Lucene search
K

4 matches found

OSV
OSV
added 2025/09/23 7:15 a.m.7 views

CVE-2025-10845

A vulnerability was found in Portabilis i-Educar up to 2.10. This affects an unknown part of the file /module/ComponenteCurricular/view. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used...

8.8CVSS7.2AI score0.00394EPSS
Exploits0References5
CVE
CVE
added 2025/09/23 6:32 a.m.16 views

CVE-2025-10845

Portabilis i-Educar (versions up to 2.10) is affected by a SQL injection in the /module/ComponenteCurricular/view path, exploitable via the ID parameter and exploitable remotely. Root cause is improper handling/manipulation of the ID argument. The vulnerability is documented across multiple feeds...

8.8CVSS6.4AI score0.00394EPSS
Exploits0References5Affected Software1
CNNVD
CNNVD
added 2025/09/23 12:0 a.m.5 views

i-Educar SQL注入漏洞

i-Educar is a free educational software from Portábilis Open Source. A SQL injection vulnerability exists in i-Educar version 2.10 and earlier, which stems from incorrect manipulation of the parameter IDs in the file /module/ComponenteCurricular/view, which could lead to a SQL injection attack...

8.8CVSS6.9AI score0.00394EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/09/23 12:0 a.m.13 views

PT-2025-39148

Name of the Vulnerable Software and Affected Versions Portabilis i-Educar versions prior to 2.11 Description A flaw exists in Portabilis i-Educar that allows for remote code execution. The issue stems from a SQL injection vulnerability within the /module/ComponenteCurricular/view file. Manipulati...

8.8CVSS8.3AI score0.00394EPSS
Exploits0References9
Rows per page
Query Builder