Forbes website uses a common and easy to bypass WAF to secure their website. The XSS vulnerability can be exploited with the payload <img src=x onerror=alert(1)> making it an easy target for attackers. It is recommended for Forbes to strengthen their WAF security measures to prevent such exploits.
For more insights, check out the original tweet here: https://twitter.com/BrainLabVisions/status/1825786851875053680. And don’t forget to follow @BrainLabVisions for more exciting updates in the world of cybersecurity.