since CMSimple_XH 1.5.4 there is a check to prevent attacks through unexpected character encodings. If the test is positive, XH responds with 400 Bad request and the message "Malformed UTF-8 detected" is shown.
Obviously, in rare cases this 400 response happens to innocent users, so I suggest that we improve the message, for instance:
We could easily add internationalization as the language file is already read before the check. I suggest to do so.Bad request. Please <a href=".">try again</a>.
Christoph