Cross-site Scripting (XSS)

getformwork/formwork is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to improper input sanitization due to the site title field allowing JavaScript tags, which can be used to attack all system members...