Kiyoleee

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Curfew e-Pass Management System version 1.0 **Description** A flaw exists in PHPGurukul Curfew e-Pass Management System version 1.0. Manipulation of the `adminname`/`email` argument within an unknown function of the `admin-profile.php` file can lead to cross site scripting. This attack can be launched remotely. An exploit for this issue has been published. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Curfew e-Pass Management System version 1.0 **Description** A security issue exists in PHPGurukul Curfew e-Pass Management System. The issue involves the processing of the `edit-category-detail.php` file. Manipulation of the `catname` argument can lead to cross site scripting. The attack can be launched remotely. The exploit is publicly available. **Recommendations** Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to the `edit-category-detail.php` file. Avoid using the `catname` parameter in the affected file until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Curfew e-Pass Management System version 1.0 **Description** A flaw exists in PHPGurukul Curfew e-Pass Management System 1.0. The issue involves the manipulation of the `Fullname`/`Category` argument in the `view-pass-detail.php` file, leading to cross site scripting. This attack can be initiated remotely. An exploit for this issue has been published. **Recommendations** Apply a fix to address the manipulation of the `Fullname`/`Category` argument in the `view-pass-detail.php` file.