5 matches found
CVE-2025-10590
A security flaw has been discovered in Portabilis i-Educar up to 2.10. The impacted element is an unknown function of the file /intranet/educarusuariodet.php. The manipulation of the argument refpessoa results in cross site scripting. The attack can be executed remotely. The exploit has been...
CVE-2025-10590
A security flaw has been discovered in Portabilis i-Educar up to 2.10. The impacted element is an unknown function of the file /intranet/educarusuariodet.php. The manipulation of the argument refpessoa results in cross site scripting. The attack can be executed remotely. The exploit has been...
CVE-2025-10590 Portabilis i-Educar educar_usuario_det.php cross site scripting
A security flaw has been discovered in Portabilis i-Educar up to 2.10. The impacted element is an unknown function of the file /intranet/educarusuariodet.php. The manipulation of the argument refpessoa results in cross site scripting. The attack can be executed remotely. The exploit has been...
CVE-2025-10590
CVE-2025-10590 affects Portabilis i-Educar up to 2.10. The vulnerable element is the file /intranet/educar_usuario_det.php, where manipulation of the ref_pessoa argument triggers a cross-site scripting (XSS) vulnerability that can be exploited remotely. Public PoC/exploit exists. Affected compone...
i-Educar 代码注入漏洞
i-Educar is a free educational software open source by Portábilis. A code injection vulnerability exists in i-Educar version 2.10 and earlier, which stems from a misuse of the parameter refpessoa in the file /intranet/educarusuariodet.php, which could lead to a cross-site scripting attack...