CVE-2024-10242 — The authentication endpoint fails to adequately validate user-supplied input before reflecting it back in the response. This allows an attacker to inject malicious script payloads into the input param — CVE Database · The Intelligence Room