CVE-2025-56605

Published: Feb 26, 2026

Modified: Feb 26, 2026

PUBLISHED

Description

A reflected Cross-Site Scripting (XSS) vulnerability exists in the register.php backend script of PuneethReddyHC Event Management System 1.0. The mobile POST parameter is improperly validated and echoed back in the HTTP response without sanitization, allowing an attacker to inject and execute arbitrary JavaScript code in the victim's browser.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/Userr404/CVE-2025-56605

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-56605

Description

Affected Products

References