Rohit Tiwari

**Name of the Vulnerable Software and Affected Versions** Judging Management System version 1.0 **Description** A SQL injection issue was found in the Judging Management System. The vulnerability can be exploited via the `id` parameter at the "/php-jms/deductScores.php" API endpoint. **Recommendations** For Judging Management System version 1.0, avoid using the `id` parameter in the "/php-jms/deductScores.php" API endpoint until the issue is resolved. As a temporary workaround, consider restricting access to the deductScores.php script to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Online Nurse Hiring System version 1.0 **Description** The issue is related to a cross-site scripting (XSS) vulnerability found in the Profile Page of the Admin section. This type of vulnerability allows attackers to inject malicious scripts into websites, potentially leading to unauthorized access or control of user sessions. **Recommendations** For Online Nurse Hiring System version 1.0, consider disabling the Profile Page of the Admin section until a patch is available to prevent potential exploitation of the XSS vulnerability. Restrict access to this page to minimize the risk of unauthorized script injection. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Online Nurse Hiring System version 1.0 **Description** The issue is related to a cross-site scripting (XSS) vulnerability found in the Search Report Details of the Admin portal. This type of vulnerability allows attackers to inject malicious scripts into websites, potentially leading to unauthorized access or control of user sessions. **Recommendations** For Online Nurse Hiring System version 1.0, consider disabling the Search Report Details feature in the Admin portal until a patch is available to prevent potential exploitation of the XSS vulnerability. Restrict access to the Admin portal to minimize the risk of exploitation. Avoid using the Search Report Details feature until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Online Nurse Hiring System version 1.0 **Description** The issue is related to a cross-site scripting (XSS) vulnerability found in the Search Report Page of the Admin portal. This type of vulnerability allows attackers to inject malicious scripts into websites, potentially leading to unauthorized access or control of user sessions. **Recommendations** For Online Nurse Hiring System version 1.0, consider disabling the Search Report Page in the Admin portal until a fix is available to prevent potential exploitation of the XSS vulnerability. Restrict access to the Admin portal to minimize the risk of exploitation. Avoid using the Search Report Page until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Online Nurse Hiring System version 1.0 **Description** The issue is related to a cross-site scripting (XSS) vulnerability found in the Add Nurse Page within the Admin portal. This type of vulnerability allows attackers to inject malicious scripts into content from otherwise trusted websites. **Recommendations** For Online Nurse Hiring System version 1.0, consider disabling the Add Nurse Page functionality in the Admin portal until a fix is available to prevent potential exploitation of the XSS vulnerability. Restrict access to the Admin portal to minimize the risk of exploitation. Avoid using the Add Nurse Page until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Online Nurse Hiring System version 1.0 **Description** The issue is related to a cross-site scripting (XSS) vulnerability found in the View Request of Nurse Page within the Admin portal. **Recommendations** For Online Nurse Hiring System version 1.0, consider restricting access to the View Request of Nurse Page in the Admin portal until a fix is available. As a temporary workaround, avoid using the affected page to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Maid Hiring Management System version 1.0 **Description** The issue is related to a SQL injection vulnerability found in the Admin page of the system. **Recommendations** For Maid Hiring Management System version 1.0, consider restricting access to the Admin page until a patch is available. As a temporary workaround, avoid using user-inputted data in SQL queries to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Maid Hiring Management System version 1.0 **Description** A SQL injection issue was found in the Booking Request page of the system. **Recommendations** For Maid Hiring Management System version 1.0, consider restricting access to the Booking Request page until a patch is available. As a temporary workaround, avoid using user-inputted data in SQL queries to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Maid Hiring Management System version 1.0 **Description** The issue is related to a SQL injection vulnerability found in the Search Maid page. This vulnerability could potentially allow unauthorized access to sensitive data. **Recommendations** For Maid Hiring Management System version 1.0, consider restricting access to the Search Maid page until a patch is available. As a temporary workaround, avoid using user-inputted data in SQL queries to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.