Keymonkey

**Name of the Vulnerable Software and Affected Versions** Aphpkb versions prior to 0.95.8 **Description** The issue allows remote attackers to inject arbitrary web script or HTML via specific parameters. The vulnerable parameters include `first name`, `last name`, `email`, and `username`. **Recommendations** For versions prior to 0.95.8, update to version 0.95.8 or later to resolve the issue. As a temporary workaround, consider restricting user input for the `first name`, `last name`, `email`, and `username` parameters to minimize the risk of exploitation.