CNNVD-202511-2210 Information

CNNVD ID

CNNVD-202511-2210

Related CVE

CVE-2025-65023

• CNNVD Published: 2025-11-19

Description (Chinese)

i-Educar是Portábilis开源的一个免费教育软件。 i-Educar 2.10.0及之前版本存在安全漏洞，该漏洞源于对cod_funcionario_vinculo参数处理不当，可能导致SQL注入攻击。

Description (English)

i-Educar is a free education software from Portábilis. i-Educar 2.10.0 and previous versions contain a security loophole stemming from the mishandling of cod funcionario vinculo parameters, which could lead to an attack on SQL.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Portábilis

Published

2025-11-19

Last Modified

2026-02-24

References

https://github.com/portabilis/i-educar/commit/a00dfa3f129bc84e27873aa01cbd3f82e5b6c6c8 https://github.com/portabilis/i-educar/security/advisories/GHSA-8rv6-x8h9-fjfc