CVE-2025-10607 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A security vulnerability has been detected in Portabilis i-Educar up to 2.10. Impacted is an unknown function of the file /module/Avaliacao/diarioApi. Such mani…
Medium CVSS: 5.3

CVE-2025-10607

A security vulnerability has been detected in Portabilis i-Educar up to 2.10. Impacted is an unknown function of the file /module/Avaliacao/diarioApi. Such manipulation leads to information disclosure. The attack can be executed remotely. The exploit has been disclosed publicly and may be used.
Vendor
Portabilis
Product
I-educar
CWE
CWE-200
Yayın Tarihi
2025-09-17 18:15:42
Güncelleme
2025-09-18 20:22:13
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-200 I-educar MEDIUM Portabilis 2025

Referanslar

https://github.com/marcelomulder/CVE/blob/main/i-educar/Broken%20Object%20Level%20Authorization%20(BOLA)%20allows%20enumeration%20of%20classes%20informations%20via%20.module.Avaliacao.diarioApi.md https://github.com/marcelomulder/CVE/blob/main/i-educar/CVE-2025-10607.md https://vuldb.com/?ctiid.324627 https://vuldb.com/?id.324627 https://vuldb.com/?submit.649875