2024-06-06 10:19:34
INCIBE
PUBLISHED
Vulnerability in Dulldusks PHP File Manager affecting version 1.7.8. This vulnerability consists of an XSS through the fm_current_dir parameter of index.php. An attacker could send a specially crafted JavaScript payload to an authenticated user and partially hijack their browser session.