The host is installed with Apple Safari before 12.1 and is prone to a cross-site scripting vulnerability. The flaws are present in the application, which fails to properly handle a logic issue. Successful exploitation of a maliciously crafted webpage may lead to universal cross site scripting.