Dokaterroista

**Name of the Vulnerable Software and Affected Versions** SourceCodester My Food Recipe version 1.0 **Description** A problematic vulnerability was found in the Image Upload Handler component of the index.php file, allowing for unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For version 1.0, consider disabling the Image Upload Handler component until a patch is available to prevent unrestricted upload. Restrict access to the index.php file to minimize the risk of exploitation. Avoid using the vulnerable Image Upload Handler functionality until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** SourceCodester AC Repair and Services System version 1.0 **Description** A problematic issue was found in the system, affecting an unknown function of the file "admin/?page=system info/contact information". The manipulation of the `telephone`, `mobile`, or `address` arguments leads to cross-site scripting. This issue can be exploited remotely. **Recommendations** For SourceCodester AC Repair and Services System version 1.0, consider restricting access to the "admin/?page=system info/contact information" endpoint until a fix is available. As a temporary workaround, avoid using the `telephone`, `mobile`, or `address` arguments in this endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.