Critical Vulnerability in Palo Alto GlobalProtect Gateway & Portal Enables Remote Code Execution

A reflected XSS vulnerability in Palo Alto Networks' GlobalProtect gateway and portal allows execution of malicious JavaScript in authenticated users' browsers, posing phishing and credential theft risks, especially with Clientless VPN enabled.