Name of the Vulnerable Software and Affected Versions:

SourceCodester Time Tracker version 1.0

Description:

A cross-site scripting (XSS) vulnerability exists due to manipulation of the `project-name` argument. The vulnerability affects an unknown function within the `/index.html` file. The exploit is publicly available and may be used for remote attacks.

Recommendations:

As a temporary workaround, consider restricting or disabling the use of the `project-name` argument until a fix is available.