CVE-2025-9532 | Portabilis i-Educar up to 2.10 /RegraAvaliacao/view ID sql injection

A vulnerability described as critical has been identified in Portabilis i-Educar up to 2.10. This impacts an unknown function of the file /RegraAvaliacao/view. Executing manipulation of the argument ID can lead to sql injection.

This vulnerability is registered as CVE-2025-9532. It is possible to launch the attack remotely. Furthermore, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More