CVE-2025-7819

Name of the Vulnerable Software and Affected Versions PHPGurukul Apartment Visitors Management System version 1.0

Description A problematic issue exists in the HTTP POST Request Handler component of the software. The vulnerability is due to the manipulation of the visname argument within the /create-pass.php file, which can lead to cross site scripting. It is possible to initiate the attack remotely.

Recommendations As a temporary workaround, consider restricting access to the /create-pass.php file until a fix is available. Sanitize the visname input parameter to prevent the injection of malicious scripts.