CVE-2025-10632

Name of the Vulnerable Software and Affected Versions itsourcecode Online Petshop Management System version 1.0

Description A security flaw exists in itsourcecode Online Petshop Management System version 1.0. The issue is a cross-site scripting (XSS) vulnerability within the Admin Dashboard component, specifically in the availableframe.php file. Manipulation of the name/address argument allows for remote exploitation. The exploit has been publicly released.

Recommendations As a temporary workaround, consider restricting access to the availableframe.php file until a fix is available. Avoid using the name/address argument in the Admin Dashboard component until the issue is resolved.