CVE-2025-24318

Description

Cookie policy is observable via built-in browser tools. In the presence of XSS, this could lead to full session compromise.