Squidex prior to 7.4.0 exists to contain a squid.svg cross-site scripting (XSS) vulnerability.
squidex.io squidex