Hello,
I know that the page it is only accesible with Administratos, but it is a fact that the page do not sanitize correctly the input validation of the parameters.
https://www.owasp.org/index.php/Cross-site_Scripting_(XSS)
So think to the developer will correct the bug to prevent this “vulnerability”.
Regards,
