CVE-2024-7660: SourceCodester File Manager App Add File cross site scripting
First published: Sun Aug 11 2024(Updated: )
A vulnerability has been found in SourceCodester File Manager App 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Add File Handler. The manipulation of the argument File Title/Uploaded By leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Remyandrade File Manager App | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-7660?
CVE-2024-7660 is classified as a problematic vulnerability due to its potential for cross site scripting attacks.
How do I fix CVE-2024-7660?
To fix CVE-2024-7660, ensure that user input in the File Title/Uploaded By argument is properly sanitized to prevent cross site scripting.
What components are affected by CVE-2024-7660?
CVE-2024-7660 affects the Add File Handler component of the SourceCodester File Manager App version 1.0.
What type of vulnerability is CVE-2024-7660?
CVE-2024-7660 is a cross site scripting (XSS) vulnerability.
Who is the vendor of the affected software for CVE-2024-7660?
The vendor of the affected software for CVE-2024-7660 is Remyandrade.
- agent/weakness
- agent/title
- agent/references
- agent/type
- agent/first-publish-date
- agent/description
- agent/author
- collector/mitre-cve
- source/MITRE
- agent/severity
- collector/epss-latest
- source/FIRST
- agent/epss
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/event
- agent/softwarecombine
- agent/tags
- agent/source
- vendor/remyandrade
- canonical/remyandrade file manager app
- version/remyandrade file manager app/1.0