Shen139

Name of the Vulnerable Software and Affected Versions: AutoIndex PHP Script version 1.5.2 Description: A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is achieved via the `search` parameter in the "index.php" file. Recommendations: For AutoIndex PHP Script version 1.5.2, consider validating and sanitizing user input for the `search` parameter to prevent XSS attacks. As a temporary workaround, restrict access to the "index.php" file until a patch is available.