CVE-2024-13013

Name of the Vulnerable Software and Affected Versions PHPGurukul Maid Hiring Management System version 1.0

Description A problem was found in the Contact Us Page component, specifically in the /admin/contactus.php file. The issue arises from the manipulation of the page title argument, leading to cross-site scripting. This can be exploited remotely. The exploit has been disclosed publicly.

Recommendations For PHPGurukul Maid Hiring Management System version 1.0, as a temporary workaround, consider disabling the Contact Us Page component until a patch is available. Restrict access to the /admin/contactus.php file to minimize the risk of exploitation. Avoid using the page title argument in the affected component until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.