Cross-site Scripting (XSS)
oro/platform is vulnerable to cross-site scripting. The vulnerability exists due to the lack of sanitization in the translations management function which allows an attacker to inject javascript payload via the Upload translation file...