CNNVD-202508-066 Information

CNNVD ID

CNNVD-202508-066

Related CVE

CVE-2025-50869

• CNNVD Published: 2025-08-01

Description (Chinese)

Institute-of-Current-Students是Vishal Mathur个人开发者的一个学校管理网站。 Institute-of-Current-Students 1.0版本存在安全漏洞，该漏洞源于文件qureydetails.php中Query和Answer输入字段清理不足，可能导致存储型跨站脚本。

Description (English)

Institute-of-Current-Students is a school management website for Vishal Mathur personal developers. Institute-of-Current-Students Version 1.0 has a security loophole, which stems from the inadequate clean-up of Query and Answer input fields in qureydetails.php, which may result in storage-type oversite scripts.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-08-01

Last Modified

2026-02-24

References

https://gist.github.com/b0mk35h/1fabbff8c95c6b7180c4ef404a337b8b https://portswigger.net/web-security/cross-site-scripting/stored https://access.redhat.com/security/cve/cve-2025-50869