CVE-2026-2058

The CVE-2026-2058 entry affects mathurvishal CloudClassroom-PHP-Project (Post Query Details Page, postquerypublic.php). A SQL injection arises from unsafely handling the gnamex parameter in the Post Query functionality, allowing remote attackers to inject SQL via POST requests to /postquerypublic...

EUVD-2025-23295

Malicious code in bioql PyPI...

CVE-2025-50866

CloudClassroom-PHP-Project 1.0 contains a reflected Cross-site Scripting XSS vulnerability in the email parameter of the postquerypublic endpoint. Improper sanitization allows an attacker to inject arbitrary JavaScript code that executes in the context of the user s browser, potentially leading t...

Exploit for Cross-site Scripting in Vishalmathur Cloudclassroom

CloudClassroom-PHP-Project 1.0 contains a reflected Cross-site S...

CVE-2025-51411

A reflected cross-site scripting XSS vulnerability exists in Institute-of-Current-Students v1.0 via the email parameter in the /postquerypublic endpoint. The application fails to properly sanitize user input before reflecting it in the HTML response. This allows unauthenticated attackers to injec...

Exploit for CVE-2025-51411

🛡️ CVE Disclosure: CVE-2025-51411 — Reflected XSS in Institute...