Cross-site Scripting (XSS)

forkcms is vulnerable to cross-site scripting XSS attacks. The library doesn't properly escape user input strings in the loadDataGrids function in src/Backend/Modules/Blog/Actions/Comments.php, allowing a malicious user to inject and execute web script...