The vulnerability also occurs in the current version because the previous vulnerability has not been patched.

Previous Vulnerabilities(CVE-2023-31506)

POC

Exploit Code

<isindex x="javascript:" onmouseover="alert('tyojong')">

Perform strict server-side validation for all data entered by the user.
Correctly escape or filter special characters, preventing them from being printable or executed.
Filter or restrict entries with certain types of characters used in HTML/JavaScript in the different user input fields.