Omega3663

**Name of the Vulnerable Software and Affected Versions** jakowenko double-take versions up to 1.13.1 **Description** A flaw exists in the API component of jakowenko double-take. The issue is related to the `app.use` function within the `api/src/app.js` file. Manipulation of the `X-Ingress-Path` argument can lead to cross-site scripting. This attack can be carried out remotely. **Recommendations** Upgrade to version 1.13.2 or later to resolve this issue.