Tddgns

**Name of the Vulnerable Software and Affected Versions** Projectworlds Visitor Management System version 1.0 **Description** A cross-site scripting issue exists in Projectworlds Visitor Management System version 1.0. The issue is related to the manipulation of the `Name` argument within an unknown function of the `/myform.php` file in the Add Visitor Page component. Remote exploitation is possible. The exploit has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Car Rental Project version 3.0 **Description** A flaw exists in the PHPGurukul Car Rental Project version 3.0, specifically within the /carrental/search.php file. Manipulation of the `autofocus` argument can lead to cross site scripting (XSS). This attack can be launched remotely. The exploit has been published. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.