Sow Ching Shiong, an independent vulnerability researcher has discovered a Cross-Site Scripting (XSS) vulnerability in consultants.apple.com, which can be exploited by an attacker to conduct XSS attacks.
Proof of concept
This vulnerability has been confirmed and patched by Apple Security Team. I would like to thank them for their quick response to my report.
Apple White Hat