Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

RedhatCVE
RedhatCVEadded 2025/12/10 4:9 p.m.3 views

CVE-2025-9638

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Portabilis i-Educar allows Stored Cross-Site Scripting XSS via the matriculainterna parameter in the educarusuariocad.php endpoint. This issue affects i-Educar: 2.10.0...

4.8CVSS5.1AI score0.0003EPSS
Exploits1References1
EUVD
EUVDadded 2025/12/09 6:30 p.m.3 views

EUVD-2025-202286

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Portabilis i-Educar allows Stored Cross-Site Scripting XSS via the matriculainterna parameter in the educarusuariocad.php endpoint. This issue affects i-Educar: 2.10.0...

4.8CVSS4.6AI score0.0003EPSS
Exploits1References3
NVD
NVDadded 2025/12/09 4:18 p.m.3 views

CVE-2025-9638

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Portabilis i-Educar allows Stored Cross-Site Scripting XSS via the matriculainterna parameter in the educarusuariocad.php endpoint. This issue affects i-Educar: 2.10.0...

4.8CVSS0.0003EPSS
Exploits1References2
OSV
OSVadded 2025/12/09 4:18 p.m.3 views

CVE-2025-9638

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Portabilis i-Educar allows Stored Cross-Site Scripting XSS via the matriculainterna parameter in the educarusuariocad.php endpoint. This issue affects i-Educar: 2.10.0...

4.8CVSS5AI score
Exploits0References2
Cvelist
Cvelistadded 2025/12/09 3:59 p.m.19 views

CVE-2025-9638 i-Educar 2.10.0 - Stored Cross-Site Scripting (XSS) in admin panel

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Portabilis i-Educar allows Stored Cross-Site Scripting XSS via the matriculainterna parameter in the educarusuariocad.php endpoint. This issue affects i-Educar: 2.10.0...

4.8CVSS0.0003EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2025/12/09 3:59 p.m.3 views

CVE-2025-9638 i-Educar 2.10.0 - Stored Cross-Site Scripting (XSS) in admin panel

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Portabilis i-Educar allows Stored Cross-Site Scripting XSS via the matriculainterna parameter in the educarusuariocad.php endpoint. This issue affects i-Educar: 2.10.0...

4.8CVSS4.7AI score0.0003EPSS
Exploits1References2
CVE
CVEadded 2025/12/09 3:59 p.m.8 views

CVE-2025-9638

Portabilis i-Educar 2.10.0 is affected by CVE-2025-9638. The issue is an Improper Neutralization of Input During Web Page Generation, allowing Stored Cross-Site Scripting via the matricula_interna parameter in educar_usuario_cad.php. No exploitation details are provided in the supplied documents....

4.8CVSS4.7AI score0.0003EPSS
Exploits1References2Affected Software1
CNNVD
CNNVDadded 2025/12/09 12:0 a.m.3 views

i-Educar 安全漏洞

i-Educar is a free educational software from Portábilis Open Source. A security vulnerability exists in i-Educar version 2.10.0, which stems from an improperly entered neutralization of the matriculainterna parameter in the educarusuariocad.php endpoint, which could lead to a stored cross-site...

4.8CVSS5.9AI score0.0003EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2025/12/09 12:0 a.m.3 views

PT-2025-50091

Name of the Vulnerable Software and Affected Versions Portabilis i-Educar version 2.10.0 Description The software contains an Improper Neutralization of Input During Web Page Generation issue, leading to Stored Cross-Site Scripting XSS. The issue occurs via the matricula interna parameter in the...

4.8CVSS5.4AI score0.0003EPSS
Exploits1References6
Positive Technologies
Positive Technologiesadded 2025/08/09 12:0 a.m.3 views

PT-2025-32458 · Portabilis · I-Educar

Name of the Vulnerable Software and Affected Versions: Portabilis i-Educar versions up to 2.9 Description: A cross site scripting issue exists due to the manipulation of the nm pessoa/matricula/matricula interna argument in the processing of the /intranet/educar usuario lst.php file. The attack c...

5.4CVSS6.5AI score0.00185EPSS
Exploits1References10
Rows per page
Query Builder