A cross-origin scripting (XSS) flaw in a virtual excursion framework has been exploited by nefarious individuals to insert harmful scripts into numerous sites, aiming to alter search outcomes and amplify a spam advertisement initiative extensively.
Cybersecurity analyst Oleg Zaytsev, in a document disseminated to The Hacker News, indicated that the initiative – referred to as 360XSS – has influenced more than 350 websites,