CVE-2025-8340

Name of the Vulnerable Software and Affected Versions Intern Membership Management System version 1.0

Description A flaw exists in the Error Message Handler component of the software, specifically within the fill details.php file. Manipulation of the email argument can lead to cross-site scripting (XSS). This issue can be exploited remotely. The exploit for this issue has been publicly disclosed.

Recommendations As a temporary workaround, consider sanitizing the email input to prevent the injection of malicious scripts. Restrict access to the fill details.php file to minimize the risk of exploitation.