Portabilis i-Educar ruo mgbe 2.10 educar_tipo_ensino_cad.php nm_tipo Nsụgharị koodu gafee weebụsaịtị
| CVSS Ntughari oge meta | Ọnụ ahịa exploit ugbu a (≈) | Mkpụrụ obi mmasị CTI |
|---|---|---|
| 4.0 | $0-$5k | 0.12 |
Nchịkọta
Achọpụtara adịghị ike a kpọrọ Isoro na Portabilis i-Educar ruo mgbe 2.10. Nke a metụtara ọrụ amaghi ama nke faịlụ /intranet/educar_tipo_ensino_cad.php. Nhazi a na arịrịọ nm_tipo na-eme ka Nsụgharị koodu gafee weebụsaịtị. Nke a bụ adịghị ike a na-akpọ CVE-2025-9738. E nwere ike ime ka mwakpo ahụ malite site n'ebe dị anya. N'ịbụ nke ọzọ, exploit dị. If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Nkọwa
Achọpụtara adịghị ike a kpọrọ Isoro na Portabilis i-Educar ruo mgbe 2.10. Nke a metụtara ọrụ amaghi ama nke faịlụ /intranet/educar_tipo_ensino_cad.php. Nhazi a na arịrịọ nm_tipo na-eme ka Nsụgharị koodu gafee weebụsaịtị. Nsogbu a e kwuru site na CWE dị ka CWE-79. A kọrọ na enyo enyo a e bipụtara site n'aka Karina Gante (@KarinaGante) na CVE-Hunters. A kọọrọ ndụmọdụ ka e nwee ike ibudata ya na karinagante.github.io.
Nke a bụ adịghị ike a na-akpọ CVE-2025-9738. E nwere ike ime ka mwakpo ahụ malite site n'ebe dị anya. A na-enweta nkọwa teknụzụ. Ịkpoputa nke adịghị ike a dị n'okpuru nkezi. N'ịbụ nke ọzọ, exploit dị. A kpọrọ exploit ahụ n'ìhè ọha na eze ma nwee ike iji ya. Ugbu a, ọnụahịa dị ugbu a maka exploit might be approx. USD $0-$5k n'oge a. Dị ka ọrụ MITRE ATT&CK si kwuo, usoro mwakpo bụ T1059.007.
A na-akpọ ya Ẹ̀rí Èrò. A na-ekekọrịta exploit maka nbudata na karinagante.github.io.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Ọja
Olupin
Orukọ
Àtúnse
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vekto: 🔒VulDB Igbekele: 🔍
CNA CVSS-B Score: 🔒
CNA CVSS-BT Score: 🔒
CNA Vekto: 🔒
CVSSv3
VulDB Ntughari isi nke meta: 4.1VulDB Ntughari oge meta: 4.0
VulDB Isi nke isi: 3.5
VulDB Ntughari oge: 3.2
VulDB Vekto: 🔒
VulDB Igbekele: 🔍
NVD Isi nke isi: 5.4
NVD Vekto: 🔒
CNA Isi nke isi: 3.5
CNA Vekto: 🔒
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| vekitọ | Ịsòro | Ìmúdájú | asiri | ìfaradà | Nnweta |
|---|---|---|---|---|---|
| ṣí | ṣí | ṣí | ṣí | ṣí | ṣí |
| ṣí | ṣí | ṣí | ṣí | ṣí | ṣí |
| ṣí | ṣí | ṣí | ṣí | ṣí | ṣí |
VulDB Isi nke isi: 🔒
VulDB Ntughari oge: 🔒
VulDB Igbekele: 🔍
Ịji
Klass: Nsụgharị koodu gafee weebụsaịtịCWE: CWE-79 / CWE-94 / CWE-74
CAPEC: 🔒
ATT&CK: 🔒
arabara: Rara
Ime ụlọ: Rara
Nsọtụ: Bẹẹni
Nnweta: 🔒
Mbanye: Ọha
Ipo: Ẹ̀rí Èrò
Onkọwe: Karina Gante (@KarinaGante)
Gba: 🔒
Google Hack: 🔒
EPSS Score: 🔒
EPSS Percentile: 🔒
Ntụle ọnụahịa: 🔍
Ntụle ọnụahịa ugbu a: 🔒
| 0-Day | ṣí | ṣí | ṣí | ṣí |
|---|---|---|---|---|
| Taa | ṣí | ṣí | ṣí | ṣí |
Ìmọ̀ nípa ìkìlọ̀
Mmasị: 🔍Ndị na-eme ihe nkiri na-arụsi ọrụ ike: 🔍
Ọgbakọ APT na-arụsi ọrụ ike: 🔍
igbaradi
àbá: enweghị enyemaka a maaraIpo: 🔍
ọjọ́ 0: 🔒
ahịrị oge
30/08/2025 Imọran ti jade30/08/2025 Ìforúkọ VulDB ti ṣẹda
22/09/2025 Ìmúdájú ìkẹyìn VulDB
Orísun
Imọran: karinagante.github.ioOlùwádìí: Karina Gante (@KarinaGante)
Ẹgbẹ́: CVE-Hunters
Ipo: A kò ṣàlàyé
CVE: CVE-2025-9738 (🔒)
GCVE (CVE): GCVE-0-2025-9738
GCVE (VulDB): GCVE-100-322037
EUVD: 🔒
scip Labs: https://www.scip.ch/en/?labs.20161013
nbanye
E kere: 30/08/2025 06:47 PMEmelitere: 22/09/2025 09:32 PM
Mgbanwe: 30/08/2025 06:47 PM (56), 31/08/2025 07:51 PM (30), 31/08/2025 09:54 PM (1), 05/09/2025 12:12 AM (11), 22/09/2025 09:31 PM (3), 22/09/2025 09:32 PM (8)
Zukuru: 🔍
Olùránṣẹ́: karinagante
Olùṣe ìpinnu: karinagante
Cache ID: 253:D66:103
fi silẹ
Anabata
- fi silẹ #638703: Portabilis i-Educar 2.10 Cross Site Scripting (nípasẹ̀ karinagante)
Enweghị okwu nke ọ bụla Asụsụ: ig + en.
Biko banye ka ikwu okwu