CVE-2025-9684 – Portabilis i-Educar SQL Injection Vulnerability

CVE ID : CVE-2025-9684

Published : Aug. 30, 2025, 11:15 a.m. | 1 hour, 39 minutes ago

Description : A vulnerability was determined in Portabilis i-Educar up to 2.10. This affects an unknown part of the file /module/FormulaMedia/edit of the component Formula de Cálculo de Média Page. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…