Vulnerability Details CVE-2025-60782
PHP Education Manager v1.0 is vulnerable to Cross Site Scripting (XSS) stored Cross-Site Scripting (XSS) vulnerability in the topics management module (topics.php). Attackers can inject malicious JavaScript payloads into the Titlefield during topic creation or updates.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 10.5%
CVSS Severity
CVSS v3 Score 5.4
Products affected by CVE-2025-60782
-
cpe:2.3:a:iqbolshoh:php_education_management:1.0