CVE-2025-60782

PHP Education Manager v1.0 is vulnerable to a stored Cross Site Scripting (XSS) in the topics.php module. The Title field used when creating or updating topics can inject malicious JavaScript, which can execute in affected users’ browsers. Affected product: PHP Education Manager v1.0; vulnerable ...

CVE-2009-2919

Cross-site scripting XSS vulnerability in Boonex Orca 2.0 and 2.0.2 allows remote authenticated users to inject arbitrary web script or HTML via the topic title field...

CVE-2009-2919

Cross-site scripting XSS vulnerability in Boonex Orca 2.0 and 2.0.2 allows remote authenticated users to inject arbitrary web script or HTML via the topic title field...