CVE-2024-7660

Name of the Vulnerable Software and Affected Versions SourceCodester File Manager App version 1.0

Description A vulnerability has been found in the SourceCodester File Manager App, affecting an unknown functionality of the component Add File Handler. The manipulation of the argument File Title/Uploaded By leads to cross-site scripting. The attack can be launched remotely.

Recommendations For SourceCodester File Manager App version 1.0, as a temporary workaround, consider restricting the use of the Add File Handler component until a patch is available. Avoid using the File Title/Uploaded By argument in the affected functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.