CVE-2024-7686

Name of the Vulnerable Software and Affected Versions SourceCodester Kortex Lite Advocate Office Management System version 1.0

Description A vulnerability was found in the SourceCodester Kortex Lite Advocate Office Management System, affecting an unknown part of the file register case.php. The manipulation of the arguments title, description, and opposite lawyer leads to cross-site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Recommendations As a temporary workaround, consider disabling the manipulation of the title, description, and opposite lawyer arguments in the register case.php file until a patch is available. Restrict access to the register case.php file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.