CVE-2025-50869
EUVD-2025-2337201.08.2025, 18:15
A stored Cross-Site Scripting (XSS) vulnerability exists in the qureydetails.php page of Institute-of-Current-Students 1.0, where the input fields for Query and Answer do not properly sanitize user input. Authenticated users can inject arbitrary JavaScript code.
Awaiting analysis
This vulnerability is currently awaiting analysis.