CVE-2025-9608 | Portabilis i-Educar up to 2.10 Formula de Cálculo de Média Page view ID sql injection

Inserito da Angelo Barbosa | Ago 28, 2025 | CVE

A vulnerability identified as critical has been detected in Portabilis i-Educar up to 2.10. This affects an unknown part of the file /module/FormulaMedia/view of the component Formula de Cálculo de Média Page. The manipulation of the argument ID leads to sql injection.

This vulnerability is referenced as CVE-2025-9608. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

CVE-2025-9608 | Portabilis i-Educar up to 2.10 Formula de Cálculo de Média Page view ID sql injection

Post correlati

CVE-2024-13409 | wpwax Post Grid Slider & Carousel Ultimate Plugin up to 1.6.10 on WordPress Shortcode post_type_ajax_handler theme path traversal

CVE-2024-49368 | 0xJacky Nginx-UI up to 2.0.0-beta.35 exec.Command input validation (GHSA-66m6-27r9-77vm)

CVE-2024-12757 | Nedap Librix Ecoreader missing authentication (icsa-25-007-02)

CVE-2022-34159 | Huawei CV81-WDM FW 01.70.49.29.46 denial of service (sa-20220620-01)