1. Critical XSS Scanner Flaw: Fails to Detect Basic Reflected XSS in DVWA
A critical vulnerability has been exposed within an XSS scanner's core detection logic, rendering it blind to a textbook reflected cross-site scripting (XSS) attack. The scanner fails to identify the flaw on the standard security testing target, DVWA's `/vulnerabilities/xss_r/` endpoint, even when a simple `<script>ale...