| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-4355 | Portabilis i-Educar Endpoint educar_servidor_curso_lst.php cross site scripting | Portabilis | i-Educar | Low | 3.5 | 2026-03-17 23:32:14 | Deep Dive |
| CVE-2026-2064 | Portabilis i-Educar User Data meusdadod.php cross site scripting | Portabilis | i-Educar | Low | 3.5 | 2026-02-06 19:32:08 | Deep Dive |
| CVE-2026-2015 | Portabilis i-Educar Final Status Import FinalStatusImportService.php improper authorization | Portabilis | i-Educar | Medium | 6.3 | 2026-02-06 10:32:07 | Deep Dive |
| CVE-2025-9638 | i-Educar 2.10.0 - Stored Cross-Site Scripting (XSS) in admin panel | Portabilis | i-Educar | - | - | 2025-12-09 15:59:14 | Deep Dive |
| CVE-2025-65022 | i-Educar Authenticated Time-based SQL Injection in `agenda.php` | portabilis | i-educar | High | 7.2 | 2025-11-19 16:02:13 | Deep Dive |
| CVE-2025-65023 | i-Educar Authenticated Time-based SQL Injection in `funcionario_vinculo_cad.php` | portabilis | i-educar | High | 7.2 | 2025-11-19 16:02:11 | Deep Dive |
| CVE-2025-65024 | i-Educar Authenticated Time-based SQL Injection in `agenda_admin_cad.php` | portabilis | i-educar | High | 7.2 | 2025-11-19 16:02:07 | Deep Dive |
| CVE-2025-11554 | Portabilis i-Educar User Type AccessLevelController.php insecure inherited permissions | Portabilis | i-Educar | Medium | 6.3 | 2025-10-09 20:02:07 | Deep Dive |
| CVE-2025-11050 | Portabilis i-Educar periodo-lancamento improper authorization | Portabilis | i-Educar | Medium | 6.3 | 2025-09-27 04:32:07 | Deep Dive |
| CVE-2025-11049 | Portabilis i-Educar unificacao-aluno improper authorization | Portabilis | i-Educar | Medium | 6.3 | 2025-09-27 04:02:05 | Deep Dive |
| CVE-2025-11048 | Portabilis i-Educar consulta-dispensas improper authorization | Portabilis | i-Educar | Medium | 6.3 | 2025-09-26 21:32:09 | Deep Dive |
| CVE-2025-11047 | Portabilis i-Educar aluno improper authorization | Portabilis | i-Educar | Medium | 6.3 | 2025-09-26 21:32:06 | Deep Dive |
| CVE-2025-10846 | Portabilis i-Educar edit sql injection | Portabilis | i-Educar | Medium | 6.3 | 2025-09-23 07:02:05 | Deep Dive |
| CVE-2025-10845 | Portabilis i-Educar view sql injection | Portabilis | i-Educar | Medium | 6.3 | 2025-09-23 06:32:09 | Deep Dive |
| CVE-2025-10844 | Portabilis i-Educar aluno sql injection | Portabilis | i-Educar | Medium | 6.3 | 2025-09-23 06:32:07 | Deep Dive |
| CVE-2025-10608 | Portabilis i-Educar enrollment-history access control | Portabilis | i-Educar | Medium | 6.3 | 2025-09-17 18:32:06 | Deep Dive |
| CVE-2025-10607 | Portabilis i-Educar diarioApi information disclosure | Portabilis | i-Educar | Medium | 4.3 | 2025-09-17 18:02:08 | Deep Dive |
| CVE-2025-10606 | Portabilis i-Educar ConfiguracaoMovimentoGeral cross site scripting | Portabilis | i-Educar | Medium | 4.3 | 2025-09-17 18:02:06 | Deep Dive |
| CVE-2025-10605 | Portabilis i-Educar agenda_preferencias.php cross site scripting | Portabilis | i-Educar | Medium | 4.3 | 2025-09-17 17:32:10 | Deep Dive |
| CVE-2025-10591 | Portabilis i-Educar Editar Função educar_funcao_cad.php cross site scripting | Portabilis | i-Educar | Low | 3.5 | 2025-09-17 11:02:08 | Deep Dive |