CVE-2025-2375

Name of the Vulnerable Software and Affected Versions PHPGurukul Human Metapneumovirus Testing Management System version 1.0

Description A problematic issue was found in the Admin Profile Page component, specifically in the /profile.php file. The email argument is vulnerable to cross-site scripting manipulation, allowing for remote attacks. The exploit has been publicly disclosed.

Recommendations For PHPGurukul Human Metapneumovirus Testing Management System version 1.0, consider restricting access to the /profile.php file until a patch is available. As a temporary workaround, avoid using the email argument in the affected Admin Profile Page component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.