CVE-2023-37746

Name of the Vulnerable Software and Affected Versions Maid Hiring Management System version 1.0

Description A cross-site scripting (XSS) issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title parameter of the "/admin/contactus.php" component.

Recommendations For Maid Hiring Management System version 1.0, consider disabling the /admin/contactus.php component until a patch is available, or restrict access to this component to minimize the risk of exploitation. Avoid using the Title parameter in the affected API endpoint until the issue is resolved.