Uploadcare · Uploadcare File Uploader · CVE-2024-35636
**Name of the Vulnerable Software and Affected Versions**
Uploadcare File Uploader and Adaptive Delivery (beta) versions 3.0.11 and earlier
**Description**
The issue is a Cross-Site Request Forgery (CSRF) vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web application that the user is authenticated to.
**Recommendations**
For Uploadcare File Uploader and Adaptive Delivery (beta) versions 3.0.11 and earlier, update to a version later than 3.0.11 to resolve the issue.
At the moment, there is no information about additional mitigation measures for this specific vulnerability.