CVE-2025-8369

CVE-2025-8369 affects Portabilis i-Educar 2.9. The issue is a cross-site scripting vulnerability in the parameter titulo_avaliacao of /intranet/educar_avaliacao_desempenho_lst.php. It can be initiated remotely and exploitation has been disclosed publicly. Vendor was contacted but did not respond....