Описание
A vulnerability has been found in Portabilis i-Educar up to 2.10. Affected by this issue is some unknown functionality of the file /module/Cadastro/aluno. The manipulation of the argument is leads to sql injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used.
A vulnerability has been found in Portabilis i-Educar up to 2.10. Affected by this issue is some unknown functionality of the file /module/Cadastro/aluno. The manipulation of the argument is leads to sql injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2025-10844
- https://github.com/KarinaGante/KG-Sec/blob/main/CVEs/i-Educar/24.md
- https://github.com/KarinaGante/KG-Sec/blob/main/CVEs/i-Educar/24.md#poc
- https://karinagante.github.io/cve-2025-10844
- https://karinagante.github.io/cve-2025-10844/#proof-of-concept-poc
- https://vuldb.com/?ctiid.325206
- https://vuldb.com/?id.325206
- https://vuldb.com/?submit.657687
Связанные уязвимости
A vulnerability has been found in Portabilis i-Educar up to 2.10. Affected by this issue is some unknown functionality of the file /module/Cadastro/aluno. The manipulation of the argument is leads to sql injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used.