A client‑side remote code execution flaw in Google Web Designer for Windows poses a severe threat, allowing attackers to inject malicious CSS into configuration files to subvert internal APIs and ...