Subhadip Nag

**Name of the Vulnerable Software and Affected Versions** Zoo Management System version 1.0 **Description** A problematic issue has been discovered, allowing for cross site scripting. This can be achieved by manipulating the input with `<script>alert(1)</script>`, which can be launched remotely. The issue is related to an unknown function in the `admin/manage-ticket.php` file. **Recommendations** For Zoo Management System version 1.0, consider restricting access to the `admin/manage-ticket.php` file until a fix is available. As a temporary workaround, input validation should be implemented to prevent the execution of malicious scripts.