CVE-2024-41805

Name of the Vulnerable Software and Affected Versions Tracks versions prior to 2.7.1

Description The issue allows for reflected cross-site scripting, which enables the execution of malicious JavaScript in the context of a user's browser if that user clicks on a malicious link. This can lead to phishing attacks that could result in credential theft.

Recommendations For versions prior to 2.7.1, update to version 2.7.1 to resolve the issue. As a temporary workaround, consider avoiding clicking on links from untrusted sources to minimize the risk of exploitation.