Vulnerability Description
A vulnerability classified as problematic has been found in Portabilis i-Educar 2.10. This affects the function Gerar of the file ieducar/intranet/educar_matricula_lst.php. The manipulation of the argument ref_cod_aluno leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of the patch is 82c288b9a4abb084bdfa1c0c4ef777ed45f98b46. It is recommended to apply a patch to fix this issue. The vendor initially closed the original advisory without requesting a CVE.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Portabilis | I-Educar | 2.10.0 |
Related Weaknesses (CWE)
References
- https://github.com/CVE-Hunters/CVE/blob/main/i-educar/Reflected%20Cross-Site%20SExploitThird Party Advisory
- https://github.com/portabilis/i-educar/commit/82c288b9a4abb084bdfa1c0c4ef777ed45Patch
- https://github.com/portabilis/i-educar/compare/GHSA-88xc-64vw-g4xgProduct
- https://vuldb.com/?ctiid.318609Permissions RequiredVDB Entry
- https://vuldb.com/?id.318609Third Party AdvisoryVDB Entry
- https://vuldb.com/?submit.618964Third Party AdvisoryVDB Entry
FAQ
What is CVE-2025-8510?
CVE-2025-8510 is a vulnerability with a CVSS score of 3.5 (LOW). A vulnerability classified as problematic has been found in Portabilis i-Educar 2.10. This affects the function Gerar of the file ieducar/intranet/educar_matricula_lst.php. The manipulation of the arg...
How severe is CVE-2025-8510?
CVE-2025-8510 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-8510?
Check the references section above for vendor advisories and patch information. Affected products include: Portabilis I-Educar.