1. Tollab App Exposed: Unvalidated localStorage Parsing Risks App Crashes & Data Injection
A critical security flaw in the Tollab application's state management system exposes users to potential app crashes and data injection. The vulnerability resides in the `loadProfileIntoAppStore()` function within `src/services/store-persistence.ts`. This function retrieves per-profile UI state from the browser's localS...