Security researchers at Salt uncovered an OAuth vulnerability that can be combined with any XSS vulnerability to facilitate account takeovers. Clerk, a company involved in OAuth implementations, swiftly addressed the issue upon discovery, noting that their default configuration already protected over 99.7% of their customers. They released an update to safeguard the remaining users. The vulnerability, termed "Open Response Type," involves manipulating OAuth's response_type parameter to extract unused secret codes from URLs, potentially bypassing HttpOnly protections even after XSS vulnerabilities are patched. Clerk mitigated this by processing OAuth codes on separate origins to prevent XSS exploits and by removing unexpected URL fragments to stop malicious actors from gaining unauthorized access.