The host is installed with Apple Mac OS X 10.14.5 or Safari before 12.1.2 and is prone to an universal cross site scripting vulnerability. A flaw is present in the application, which fails to properly handle a logic issue. Successful exploitation allows an attacker to cause universal cross site scripting.