[MEDIUM] Comments plugin stored Cross-site Scripting (XSS) via an asset volume name

PKSA-sp9y-x9kf-mmtw CVE-2020-13870 GHSA-69ww-wv3j-mhg4

Affected package: verbb/comments

Affected version: <1.5.5

Reported by:
GitHub