CVE-2025-10591 – Portabilis i-Educar Editar Função educar_funcao_cad.php cross site scripting

CVE ID : CVE-2025-10591

Published : Sept. 17, 2025, 11:15 a.m. | 1 hour, 44 minutes ago

Description : A weakness has been identified in Portabilis i-Educar up to 2.10. This affects an unknown function of the file /intranet/educar_funcao_cad.php of the component Editar Função Page. This manipulation of the argument abreviatura/tipoacao causes cross site scripting. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be exploited.

Severity: 5.1 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…