CVE-2022-1840

Name of the Vulnerable Software and Affected Versions Home Clean Services Management System version 1.0

Description A problematic issue has been found in the software, affecting the "register.php?link=registerand" endpoint. The manipulation with the input <script>alert(1)</script> leads to cross-site scripting. The attack may be initiated remotely but demands authentication. Exploit details have been disclosed to the public.

Recommendations For Home Clean Services Management System version 1.0, consider disabling the register.php endpoint until a patch is available to prevent cross-site scripting attacks. Restrict access to the register.php?link=registerand endpoint to minimize the risk of exploitation. Avoid using user-inputted data in the affected endpoint until the issue is resolved.