1. Reflected XSS Vulnerability in Application Endpoint Enables Arbitrary JavaScript Execution
A reflected cross-site scripting vulnerability has been identified in an application endpoint, allowing attackers to inject arbitrary JavaScript into user sessions. The flaw resides in how the application handles the "after category" parameter, copying its value directly into an HTML tag attribute wrapped in single quo...