CVE-2025-5797

Name of the Vulnerable Software and Affected Versions code-projects Laundry System version 1.0

Description A vulnerability was found in the Laundry System, affecting some unknown processing of the file /data/insert type.php. The manipulation of the Type argument leads to cross-site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Recommendations For code-projects Laundry System version 1.0, consider disabling the processing of the Type argument in the /data/insert type.php file as a temporary workaround until a patch is available. Restrict access to the /data/insert type.php file to minimize the risk of exploitation. Avoid using the Type argument in the affected file until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.