Hi, The endpoint https://demo.microweber.org/demo/admin/page is vulnerable to Cross Site Scripting.
just navigate to the poc url:
https://demo.microweber.org/demo/admin/page/8tojh1"onmouseover%3D"alert(1)"style%3D"position%3Aabsolute%3Bwidth%3A100%25%3Bheight%3A100%25%3Btop%3A0%3Bleft%3A0%3B"yrr2n/edit
now move your mouse on the page, you will see a xss popup.
(login if site asks)
Cross site scripting attacks can lead to account takeover via cookie stealing, temporary site deface, redirecting users to attackers controlled sites etc.