CVE-2025-12311

Name of the Vulnerable Software and Affected Versions PHPGurukul Curfew e-Pass Management System version 1.0

Description A security issue exists in PHPGurukul Curfew e-Pass Management System. The issue involves the processing of the edit-category-detail.php file. Manipulation of the catname argument can lead to cross site scripting. The attack can be launched remotely. The exploit is publicly available.

Recommendations Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to the edit-category-detail.php file. Avoid using the catname parameter in the affected file until the issue is resolved.