cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-7660,https://securityvulnerability.io/vulnerability/CVE-2024-7660,Cross Site Scripting Vulnerability in File Manager App 1.0,A vulnerability has been found in SourceCodester File Manager App 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Add File Handler. The manipulation of the argument File Title/Uploaded By leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.,Sourcecodester,File Manager App,6.1,MEDIUM,0.001180000021122396,false,,false,false,true,2024-08-12T12:38:00.000Z,true,false,false,,2024-08-12T13:38:00.000Z,0
CVE-2024-2604,https://securityvulnerability.io/vulnerability/CVE-2024-2604,Unrestricted File Upload Vulnerability in SourceCodester File Manager App,"A critical security vulnerability in SourceCodester File Manager App version 1.0 has been identified, allowing malicious actors to exploit the `/endpoint/update-file.php` endpoint. By manipulating the 'file' argument, attackers can perform unauthorized file uploads, resulting in potential system compromise. This vulnerability is particularly concerning due to its ability to be exploited remotely, allowing attackers to execute malicious code or gain unauthorized access to sensitive data. Organizations using the affected software are strongly advised to implement necessary security measures and apply fixes immediately to mitigate any risks associated with this vulnerability.",Sourcecodester,File Manager App,6.3,MEDIUM,0.00044999999227002263,false,,false,false,true,2024-03-18T21:00:06.000Z,true,false,false,,2024-03-18T21:00:06.410Z,0
CVE-2023-5790,https://securityvulnerability.io/vulnerability/CVE-2023-5790,SourceCodester File Manager App add-file.php unrestricted upload,"A vulnerability has been identified in the SourceCodester File Manager App, specifically within the file endpoint functionality. It allows an attacker to exploit the argument 'uploadedFileName' to execute unrestricted file uploads remotely. This vulnerability poses significant risks, as it could enable unauthorized access to sensitive files and potentially lead to remote code execution. The exploit has been disclosed publicly, underlining the importance of immediate attention and remediation by users of the affected application.",SourceCodester,File Manager App,9.8,CRITICAL,0.0014100000262260437,false,,false,false,false,,,false,false,,2023-10-26T17:15:00.000Z,0