[MEDIUM] Cross-site scripting in LavaLite-CMS

PKSA-qp76-stj4-b14w CVE-2020-23700 GHSA-592v-7frm-h44q

Affected package: lavalite/cms

Affected version: <=5.8.0

Reported by:
GitHub