VYPR
Low severity3.5NVD Advisory· Published Aug 31, 2025· Updated Apr 29, 2026

CVE-2025-9724

CVE-2025-9724

Description

A vulnerability was determined in Portabilis i-Educar up to 2.10. This impacts an unknown function of the file /intranet/educar_nivel_ensino_cad.php. Executing manipulation of the argument nm_nivel/descricao can lead to cross site scripting. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized.

Affected products

2
  • cpe:2.3:a:portabilis:i-educar:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:portabilis:i-educar:*:*:*:*:*:*:*:*range: <=2.10
    • (no CPE)range: <=2.10

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.