VYPR
Low severity3.5NVD Advisory· Published Sep 17, 2025· Updated Apr 29, 2026

CVE-2025-10584

CVE-2025-10584

Description

A vulnerability was identified in Portabilis i-Educar up to 2.10. Impacted is an unknown function of the file /intranet/educar_calendario_anotacao_cad.php. Such manipulation of the argument nm_anotacao/descricao leads to cross site scripting. It is possible to launch the attack remotely. The exploit is publicly available and might be used.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:portabilis:i-educar:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:portabilis:i-educar:*:*:*:*:*:*:*:*range: <=2.10.0
    • (no CPE)range: <=2.10

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.