Yandex Browser for desktop cross-site scripting vulnerability

Yandex Browser for desktop is a desktop version of the Russian company Yandex. A cross-site scripting vulnerability exists in Yandex Browser BookReader in versions of Yandex Browser for desktop prior to 16.6. A remote attacker can exploit this vulnerability to execute arbitrary Javascript code...