[MEDIUM] LavaLite CMS affected by a stored cross-site scripting vulnerability

PKSA-2q69-6cxz-6fkx CVE-2025-71177 GHSA-w7rq-fgx4-4xcm

Affected package: lavalite/cms

Affected version: <=10.1.0

Reported by:
GitHub