3 matches found
CVE-2025-9638 i-Educar 2.10.0 - Stored Cross-Site Scripting (XSS) in admin panel
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Portabilis i-Educar allows Stored Cross-Site Scripting XSS via the matriculainterna parameter in the educarusuariocad.php endpoint. This issue affects i-Educar: 2.10.0...
CVE-2025-9638
Portabilis i-Educar 2.10.0 is affected by CVE-2025-9638. The issue is an Improper Neutralization of Input During Web Page Generation, allowing Stored Cross-Site Scripting via the matricula_interna parameter in educar_usuario_cad.php. No exploitation details are provided in the supplied documents....
i-Educar 安全漏洞
i-Educar is a free educational software from Portábilis Open Source. A security vulnerability exists in i-Educar version 2.10.0, which stems from an improperly entered neutralization of the matriculainterna parameter in the educarusuariocad.php endpoint, which could lead to a stored cross-site...