CVE-2025-9722 – Portabilis i-Educar Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-9722

Published : Aug. 31, 2025, 8:15 a.m. | 4 hours, 44 minutes ago

Description : A vulnerability has been found in Portabilis i-Educar up to 2.10. The impacted element is an unknown function of the file /intranet/educar_tipo_ocorrencia_disciplinar_cad.php. Such manipulation of the argument nm_tipo/descricao leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 5.1 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

نوشته های مشابه

CVE-2026-6428 – Koha SQL Injection

CVE-2026-5513 – Online Scheduling and Appointment Booking System – Bookly

CVE-2026-11624 – Model Context Protocol DNS Rebinding Vulnerability

CVE-2026-1291 – Meow Gallery