Low severity3.5NVD Advisory· Published Aug 31, 2025· Updated Apr 29, 2026
CVE-2025-9724
CVE-2025-9724
Description
A vulnerability was determined in Portabilis i-Educar up to 2.10. This impacts an unknown function of the file /intranet/educar_nivel_ensino_cad.php. Executing manipulation of the argument nm_nivel/descricao can lead to cross site scripting. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized.
Affected products
2cpe:2.3:a:portabilis:i-educar:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:portabilis:i-educar:*:*:*:*:*:*:*:*range: <=2.10
- (no CPE)range: <=2.10
Patches
Vulnerability mechanics
References
4- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdThird Party AdvisoryVDB Entry
- github.com/KarinaGante/KGSec/blob/main/CVEs/i-educar/19.mdnvdBroken Link
- vuldb.comnvdPermissions RequiredVDB Entry
News mentions
0No linked articles in our index yet.