CVE Daily

CVE-2025-7109

A vulnerability, which was classified as problematic, has been found in Portabil...

Low CVSS 3.5

Overview

A vulnerability, which was classified as problematic, has been found in Portabilis i-Educar 2.9.0. Affected by this issue is some unknown functionality of the file /intranet/educar_aluno_beneficio_lst.php of the component Student Benefits Registration. The manipulation of the argument BenefΓ­cio leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

CWE: CWE-79 Published: 2025-07-07T03:15:30.730
Risk analysis

This vulnerability is rated 🟒 LOW.

  • CVSS: 3.5 (LOW)
  • Detected tags: none (tag impact: LOW)

Recommended actions:

  • Prioritize remediation based on business criticality and exposure.
  • Limit exposure and increase monitoring until fixed.

Recommended tools

Tags