2 matches found
CVE-2025-65024
creationtimestamp| type| source ---|---|--- 2025-11-19 17:54:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m5yt55oycu2w...
CVE-2025-65024 i-Educar Authenticated Time-based SQL Injection in `agenda_admin_cad.php`
i-Educar is free, fully online school management software. In versions 2.10.0 and prior, an authenticated time-based SQL injection vulnerability exists in the ieducar/intranet/agendaadmincad.php script. An attacker with access to an authenticated session can execute arbitrary SQL commands against...