5 matches found
CVE-2025-10584
A vulnerability was identified in Portabilis i-Educar up to 2.10. Impacted is an unknown function of the file /intranet/educarcalendarioanotacaocad.php. Such manipulation of the argument nmanotacao/descricao leads to cross site scripting. It is possible to launch the attack remotely. The exploit ...
CVE-2025-10584
A vulnerability was identified in Portabilis i-Educar up to 2.10. Impacted is an unknown function of the file /intranet/educarcalendarioanotacaocad.php. Such manipulation of the argument nmanotacao/descricao leads to cross site scripting. It is possible to launch the attack remotely. The exploit ...
CVE-2025-10584 Portabilis i-Educar educar_calendario_anotacao_cad.php cross site scripting
A vulnerability was identified in Portabilis i-Educar up to 2.10. Impacted is an unknown function of the file /intranet/educarcalendarioanotacaocad.php. Such manipulation of the argument nmanotacao/descricao leads to cross site scripting. It is possible to launch the attack remotely. The exploit ...
i-Educar 代码注入漏洞
i-Educar is a free educational software from Portábilis Open Source. A code injection vulnerability exists in i-Educar 2.10 and earlier versions, which stems from a misuse of the parameter nmanotacao/descricao in the file /intranet/educarcalendarioanotacaocad.php, which could lead to a cross-site...
Portábilis i-Educar 代码注入漏洞
Portábilis i-Educar is an application from Portábilis. It can easily help you with basic and technical education. A code injection vulnerability exists in Portábilis i-Educar version 2.9.0, which originates from cross-site scripting due to improper handling of the parameter Motivo in the file...