CVE-2025-9686
BaseFortify
Publication date: 2025-08-30
Last updated on: 2026-04-29
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| portabilis | i-educar | to 2.10 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-74 | The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component. |
| CWE-89 | The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-9686 is a SQL injection vulnerability in Portabilis i-Educar up to version 2.10, specifically in the 'Listagem de áreas de conhecimento' page at the /module/AreaConhecimento/edit endpoint. It occurs because the 'id' parameter is not properly validated or sanitized, allowing attackers to inject malicious SQL commands. This flaw lets attackers manipulate the backend database by injecting SQL code remotely, potentially compromising the system's confidentiality, integrity, and availability. [1, 2]
How can this vulnerability impact me? :
This vulnerability can have several impacts: unauthorized access to sensitive data such as credentials and personal information; database enumeration to extract schema, tables, and columns; data manipulation including insertion, modification, or deletion of records; denial of service by causing delays in database queries; and potentially remote code execution if combined with other vulnerabilities. The attack can be performed remotely and may affect all users able to interact with the vulnerable parameter. [1, 2]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by testing the `id` parameter of the /module/AreaConhecimento/edit endpoint for blind time-based SQL injection. A common detection method is to inject a payload that causes a delay in the server response, such as using PostgreSQL's PG_SLEEP function. For example, sending a POST request with the payload '+AND+7097=(SELECT+7097+FROM+PG_SLEEP(5))+AND+'WqeR'='WqeR' in the `id` parameter and observing if the response is delayed by approximately 5 seconds indicates the presence of the vulnerability. [2]
What immediate steps should I take to mitigate this vulnerability?
Currently, no known countermeasures or mitigations exist for this vulnerability. It is recommended to replace the affected component or product (Portabilis i-Educar up to version 2.10). Additionally, restricting access to the vulnerable endpoint and monitoring for suspicious activity may help reduce risk until a patch or fix is available. [1]