VYPR

I Educar

by Portabilis

Source repositories

CVEs (94)

  • CVE-2025-9684MedAug 30, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was determined in Portabilis i-Educar up to 2.10. This affects an unknown part of the file /module/FormulaMedia/edit of the component Formula de Cálculo de Média Page. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack…

  • CVE-2025-9609MedAug 29, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in Portabilis i-Educar up to 2.10. This vulnerability affects unknown code of the file /educacenso/consulta. The manipulation results in improper authorization. The attack can be executed remotely. The exploit has been made public and could be used.

  • CVE-2025-9608MedAug 29, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability has been found in Portabilis i-Educar up to 2.10. This affects an unknown part of the file /module/FormulaMedia/view of the component Formula de Cálculo de Média Page. The manipulation of the argument ID leads to sql injection. Remote exploitation of the attack…

  • CVE-2025-9607MedAug 29, 2025
    risk 0.41cvss 6.3epss 0.00

    A flaw has been found in Portabilis i-Educar up to 2.10. Affected by this issue is some unknown functionality of the file /module/TabelaArredondamento/view of the component Tabelas de Arredondamento Page. Executing manipulation of the argument ID can lead to sql injection. The…

  • CVE-2025-9606MedAug 29, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was detected in Portabilis i-Educar up to 2.10. Affected by this vulnerability is an unknown functionality of the file /intranet/agenda_preferencias.php. Performing manipulation of the argument cod_agenda results in sql injection. The attack may be initiated…

  • CVE-2025-9532MedAug 27, 2025
    risk 0.41cvss 6.3epss 0.00

    A flaw has been found in Portabilis i-Educar up to 2.10. This impacts an unknown function of the file /RegraAvaliacao/view. Executing manipulation of the argument ID can lead to sql injection. It is possible to launch the attack remotely. The exploit has been published and may…

  • CVE-2025-9531MedAug 27, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was detected in Portabilis i-Educar up to 2.10. This affects an unknown function of the file /intranet/agenda.php of the component Agenda Module. Performing manipulation of the argument cod_agenda results in sql injection. It is possible to initiate the attack…

  • CVE-2025-9236MedAug 20, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability has been found in Portabilis i-Educar up to 2.10. This affects an unknown function of the file /intranet/educar_tipo_usuario_lst.php of the component Tipos de usuàrio Page. Such manipulation of the argument nm_tipo/descrição leads to sql injection. The attack…

  • CVE-2025-10607MedSep 17, 2025
    risk 0.28cvss 4.3epss 0.00

    A security vulnerability has been detected in Portabilis i-Educar up to 2.10. Impacted is an unknown function of the file /module/Avaliacao/diarioApi. Such manipulation leads to information disclosure. The attack can be executed remotely. The exploit has been disclosed publicly…

  • CVE-2025-10606MedSep 17, 2025
    risk 0.28cvss 4.3epss 0.00

    A weakness has been identified in Portabilis i-Educar up to 2.10. This issue affects some unknown processing of the file /module/Configuracao/ConfiguracaoMovimentoGeral. This manipulation of the argument tipoacao causes cross site scripting. Remote exploitation of the attack is…

  • CVE-2025-10605MedSep 17, 2025
    risk 0.28cvss 4.3epss 0.00

    A security flaw has been discovered in Portabilis i-Educar up to 2.10. This vulnerability affects unknown code of the file /agenda_preferencias.php. The manipulation of the argument tipoacao results in cross site scripting. The attack may be launched remotely. The exploit has…

  • CVE-2025-10590MedSep 17, 2025
    risk 0.28cvss 4.3epss 0.00

    A security flaw has been discovered in Portabilis i-Educar up to 2.10. The impacted element is an unknown function of the file /intranet/educar_usuario_det.php. The manipulation of the argument ref_pessoa results in cross site scripting. The attack can be executed remotely. The…

  • CVE-2025-10073MedSep 8, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was determined in Portabilis i-Educar up to 2.10. Impacted is an unknown function of the file /module/Api/turma. Executing manipulation can lead to improper authorization. It is possible to launch the attack remotely. The exploit has been publicly disclosed and…

  • CVE-2025-8790MedAug 10, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was found in Portabilis i-Educar up to 2.9.0. It has been declared as critical. This vulnerability affects unknown code of the file /module/Api/pessoa of the component API Endpoint. The manipulation of the argument ID leads to improper authorization. The attack…

  • CVE-2025-8789MedAug 10, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was found in Portabilis i-Educar up to 2.9.0. It has been classified as problematic. This affects an unknown part of the file /module/Api/Diario of the component API Endpoint. The manipulation leads to authorization bypass. It is possible to initiate the attack…

  • CVE-2025-8370MedJul 31, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability, which was classified as problematic, was found in Portabilis i-Educar 2.9. Affected is an unknown function of the file /intranet/educar_escolaridade_lst.php. The manipulation of the argument descricao leads to cross site scripting. It is possible to launch the…

  • CVE-2025-8369MedJul 31, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability, which was classified as problematic, has been found in Portabilis i-Educar 2.9. This issue affects some unknown processing of the file /intranet/educar_avaliacao_desempenho_lst.php. The manipulation of the argument titulo_avaliacao leads to cross site scripting.…

  • CVE-2025-8368MedJul 31, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability classified as problematic was found in Portabilis i-Educar 2.9. This vulnerability affects unknown code of the file /intranet/pesquisa_pessoa_lst.php. The manipulation of the argument campo_busca/cpf leads to cross site scripting. The attack can be initiated…

  • CVE-2025-8367MedJul 31, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability classified as problematic has been found in Portabilis i-Educar 2.9. This affects an unknown part of the file /intranet/funcionario_vinculo_lst.php. The manipulation of the argument nome leads to cross site scripting. It is possible to initiate the attack…

  • CVE-2025-8366MedJul 31, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was found in Portabilis i-Educar 2.9. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /intranet/educar_servidor_lst.php. The manipulation of the argument nome/matricula_servidor leads to cross site scripting. The…

Page 2 of 5