CVE-2024-8605

Name of the Vulnerable Software and Affected Versions: code-projects Inventory Management version 1.0

Description: A problematic issue was found in the Registration Form component, specifically in the /view/registration.php file. The issue allows for cross-site scripting when an attacker manipulates the input with malicious code, such as <script>alert(1)</script>. This can be initiated remotely.

Recommendations: For code-projects Inventory Management version 1.0, consider disabling the Registration Form component or restricting access to the /view/registration.php file until a fix is available. Avoid using the Registration Form with untrusted input to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.