[MEDIUM] MODX Revolution XSS via HTTP Host header

PKSA-3rn9-vnj8-trvb CVE-2017-9071 GHSA-p2j4-vrgx-96qg

Affected package: modx/revolution

Affected version: <2.5.7

Reported by:
GitHub