Nibin-M

**Name of the Vulnerable Software and Affected Versions** Phpgurukul User Registration & User Management System version 3.0 **Description** The issue concerns multiple stored cross-site scripting (XSS) vulnerabilities. These vulnerabilities can be exploited via the `firstname` and `lastname` parameters of the registration form and login pages. **Recommendations** For Phpgurukul User Registration & User Management System version 3.0, consider validating and sanitizing user input for the `firstname` and `lastname` parameters to prevent XSS attacks. As a temporary workaround, restrict the use of special characters in these fields until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.