U.S. Dept Of Defense: [████████] RXSS via "CurrentFolder" parameter

A reflected cross-site scripting vulnerability was found on a website that allowed malicious scripts to be injected via the CurrentFolder parameter...