[MEDIUM] Cross-site Scripting in YII2-CMS

PKSA-1f5g-sgj2-fbqr CVE-2019-16130 GHSA-rfh8-25h9-mhgf

Affected package: yii2mod/yii2-cms

Affected version: <1.9.2

Reported by:
GitHub