The endpoint https://demo.microweber.org/demo/admin/post/{id}/edit is vulnerable to cross site scripting.
The “Edit source” field is affected.
<img src>
Cross site scripting attacks can lead to account takeover via cookie stealing, temporary webpage deface, redirections etc.