Reflected XSS on https://███████/

**Summary:** Hey Team, There is reflected xss on https://█████/kinetic/ when certain action results in 404 error. **Description:** I am using some random strings paths after kinetic in https://███████/kinetic/ if that path is not exist then it says 404 not found. Strings is not sanitized after kinetic/ due to which any one can able to use Java Script code after kinetic/ and it executed successfully leads to reflected xss. ## Impact The attacker can able to execute JS code. ## Step-by-step Reproduction Instructions 1. open this https://████████/kinetic/1%3C!--%3E%3CSvg%20OnLoad=(confirm)(document.domain)--%3E/ in firefox 2. You will get alert pop up. ## Product, Version, and Configuration (If applicable) ## Suggested Mitigation/Remediation Actions Sanitize string ## Impact The attacker can able to execute JS code.