Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2025-10013

Good to know:

icon

Date: September 5, 2025

A vulnerability was detected in Portabilis i-Educar up to 2.10. This affects an unknown function of the file /exportacao-para-o-seb. Performing manipulation results in improper access controls. The attack is possible to be carried out remotely. The exploit is now public and may be used.

Severity Score

Related Resources (7)

https://vuldb.com/?submit.643567
https://github.com/marcelomulder/CVE/blob/main/i-educar/Broken%20Access%20Control%20Vulnerability%20%20in%20%60exportacao-para-o-seb%60%20Endpoint.md
https://github.com/marcelomulder/CVE/blob/main/i-educar/CVE-2025-10013.md
https://nvd.nist.gov/vuln/detail/CVE-2025-10013
https://vuldb.com/?ctiid.322738
https://vuldb.com/?id.322738
https://www.mend.io/vulnerability-database/CVE-2025-10013

Severity Score

Weakness Type (CWE)

Improper Access Control

CWE-284

Incorrect Privilege Assignment

CWE-266

Top Fix

icon

Upgrade Version

Upgrade to version https://github.com/portabilis/i-educar.git - null

CVSS v3.1

Base Score:
Attack Vector (AV): NETWORK
Attack Complexity (AC): LOW
Privileges Required (PR): LOW
User Interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality (C): LOW
Integrity (I): LOW
Availability (A): LOW

CVSS v2

Base Score:
Access Vector (AV): NETWORK
Access Complexity (AC): LOW
Authentication (AU): SINGLE
Confidentiality (C): PARTIAL
Integrity (I): PARTIAL
Availability (A): PARTIAL
Additional information:

Do you need more information?

Contact Us