Webswing · Webswing · CVE-2024-39332
**Name of the Vulnerable Software and Affected Versions**
Webswing version 23.2.2
**Description**
The issue allows remote attackers to modify client-side JavaScript code, achieving path traversal, which can likely lead to remote code execution via modification of shell scripts on the server.
**Recommendations**
For Webswing version 23.2.2, consider disabling the modification of client-side JavaScript code as a temporary workaround until a patch is available. Restrict access to shell scripts on the server to minimize the risk of exploitation.