Vulnerability Database

300,445

Total vulnerabilities in the database

CVE-2025-50869

A stored Cross-Site Scripting (XSS) vulnerability exists in the qureydetails.php page of Institute-of-Current-Students 1.0, where the input fields for Query and Answer do not properly sanitize user input. Authenticated users can inject arbitrary JavaScript code.

Published: Aug 1, 2025
Updated: Aug 2, 2025
CVE: CVE-2025-50869
Exploit:

No technical information available.

No CWE or OWASP classifications available.

Affected Software
References

No affected software listed.

https://gist.github.com/b0mk35h/1fabbff8c95c6b7180c4ef404a337b8b
https://portswigger.net/web-security/cross-site-scripting/stored

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo