CVE-2025-41024

Name of the Vulnerable Software and Affected Versions Poultry Farm Management System version 1.0

Description A stored Cross-Site Scripting (XSS) issue exists due to insufficient validation of user-supplied data when a POST request is made. The following parameters in the '/farm/farmprofile.php' endpoint are affected: companyaddress, companyemail, companyname, country, mobilenumber, and regno. This allows for the injection of malicious scripts.

Recommendations Apply input validation to the companyaddress, companyemail, companyname, country, mobilenumber, and regno parameters in the '/farm/farmprofile.php' endpoint.