1. Feirb Web App Security Flaw: 7-Day Refresh Token Exposed in localStorage, Vulnerable to XSS Exfiltration
A critical security vulnerability has been identified in the Feirb web application, where the 7-day refresh token is stored in the browser's `localStorage`. This storage mechanism is fully readable by any JavaScript executing on the page, creating a direct path for attackers to exfiltrate the token if an XSS vulnerabil...