CVE-2025-32518

Name of the Vulnerable Software and Affected Versions: hossainawlad ALD Login Page versions n/a through 1.1

Description: The issue is related to a Cross-Site Request Forgery (CSRF) vulnerability that also allows Stored XSS in the hossainawlad ALD Login Page.

Recommendations: For versions n/a through 1.1, update to a version that includes a fix for the CSRF vulnerability, ensuring that the Stored XSS issue is also addressed. As a temporary workaround, consider implementing additional validation and verification for requests to prevent CSRF attacks until a patch is available.