CVE-2025-8785
BaseFortify
Publication date: 2025-08-10
Last updated on: 2026-04-29
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| portabilis | i-educar | to 2.9.0 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-79 | The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. |
| CWE-94 | The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-8785 is a cross-site scripting (XSS) vulnerability in Portabilis i-Educar versions up to 2.9, specifically in the file /intranet/educar_usuario_lst.php. It occurs because the application does not properly validate or sanitize user inputs in the parameters nm_pessoa, matricula, and matricula_interna. This allows an attacker to inject malicious JavaScript code that is executed in the browsers of users who visit the affected page, potentially compromising data integrity and security. [1, 2]
How can this vulnerability impact me? :
This vulnerability allows attackers to execute arbitrary scripts in the browsers of users visiting the vulnerable page. The impacts include unauthorized actions performed on behalf of the user, theft of sensitive data, session hijacking, installation of malware, defacement of web content, spreading misinformation, and manipulation of user instructions. These consequences can compromise user accounts, data confidentiality, and damage the reputation of the affected organization. [2]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by testing the vulnerable endpoint `/intranet/educar_usuario_lst.php` with specially crafted inputs in the parameters `nm_pessoa`, `matricula`, and `matricula_interna` to check for reflected cross-site scripting (XSS). For example, sending HTTP GET requests with payloads such as `"><script>alert('XSS-PoC2')</script>` in these parameters and observing if the script executes in the response indicates the presence of the vulnerability. You can use tools like curl or browser-based testing to perform these checks. Additionally, Google dorking with the query `inurl:intranet/educar_usuario_lst.php` can help identify vulnerable instances exposed on the internet. [1, 2]
What immediate steps should I take to mitigate this vulnerability?
Currently, no effective countermeasures or vendor-provided patches are available for this vulnerability. Immediate mitigation steps include restricting access to the vulnerable endpoint, applying web application firewalls (WAF) rules to block malicious input patterns targeting the parameters `nm_pessoa`, `matricula`, and `matricula_interna`, and monitoring for suspicious activity. As a precaution, consider replacing Portabilis i-Educar with alternative products not affected by this issue. Educate users to be cautious of suspicious links that may exploit this vulnerability. [1]