CVE-2020-14042
Codiad v1.7.8 and later contains a Cross‑Site Scripting (XSS) vulnerability due to improper sanitization of the folder name path variable in components/filemanager/class.filemanager.php . Implication: attacker could inject HTML/JS via the affected path, with potential impact depending on where th...