CVE-2025-3958

Name of the Vulnerable Software and Affected Versions withstars Books-Management-System version 1.0

Description A vulnerability was found in the withstars Books-Management-System. It has been classified as problematic and affects an unknown function of the file /book edit do.html of the component Book Edit Page. The manipulation of the Name argument leads to cross-site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well. This vulnerability only affects products that are no longer supported by the maintainer.

Recommendations As a temporary workaround, consider disabling the unknown function of the file /book edit do.html until a patch is available. Restrict access to the Book Edit Page to minimize the risk of exploitation. Avoid using the Name argument in the affected component until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.