genix/cms is vulnerable to cross-site scripting (XSS) attacks. The library does not properly sanitize the Menu ID field ininc/lib/Control/Backend/menus.control.php
, allowing a malicious user to inject and execute arbitrary web script through a page=menus
request.