Unrated severityNVD Advisory· Published Nov 20, 2025· Updated Nov 21, 2025

CVE-2025-52410

Description

Institute-of-Current-Students v1.0 contains a time-based blind SQL injection vulnerability in the mydetailsstudent.php endpoint. The myds GET parameter is not adequately sanitized before being used in SQL queries.

Affected products

Institute-of-Current-Students/Institute-of-Current-Studentsdescription

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/mathurvishal/Institute-of-Current-Students---PHP-Project/issues/2mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000