[MEDIUM] Subrion CMS Cross-site Scripting (XSS) vulnerability in the `contact us` plugin

PKSA-8vyx-z7hv-zp9k CVE-2021-41948 GHSA-jv64-2m3x-6v4q

Affected package: intelliants/subrion

Affected version: <=4.2.1

Reported by:
GitHub