CVE-2025-9652 | Portabilis i-Educar up to 2.10 Cadastrar tipo de transferência Page educar_transferencia_tipo_cad.php nm_tipo/desc_tipo cross site scripting

Inserito da Angelo Barbosa | Ago 29, 2025 | CVE

A vulnerability classified as problematic has been found in Portabilis i-Educar up to 2.10. Affected is an unknown function of the file /intranet/educar_transferencia_tipo_cad.php of the component Cadastrar tipo de transferência Page. This manipulation of the argument nm_tipo/desc_tipo causes cross site scripting.

The identification of this vulnerability is CVE-2025-9652. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-9652 | Portabilis i-Educar up to 2.10 Cadastrar tipo de transferência Page educar_transferencia_tipo_cad.php nm_tipo/desc_tipo cross site scripting

Post correlati

CVE-2024-26276 | Siemens Parasolid X_T File allocation of resources (ssa-222019)

CVE-2023-52361 | Huawei HarmonyOS 4.0.0 VerifiedBoot Module improper authentication

CVE-2024-41744 | IBM CICS TX Standard 11.1 cross-site request forgery

CVE-2024-5818 | Royal Elementor Addons and Templates Plugin up to 1.3.980 on WordPress Magazine Grid Slider Widget cross site scripting