CVE-2025-9724 – Portabilis i-Educar Cross-Site Scripting (XSS) Vulnerability

CVE ID : CVE-2025-9724

Published : Aug. 31, 2025, 10:15 a.m. | 2 hours, 44 minutes ago

Description : A vulnerability was determined in Portabilis i-Educar up to 2.10. This impacts an unknown function of the file /intranet/educar_nivel_ensino_cad.php. Executing manipulation of the argument nm_nivel/descricao can lead to cross site scripting. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized.

Severity: 5.1 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…