Security Advisory

CVE-2025-11554

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-09 20:02:06

Last updated 2026-02-24 06:56:18

Assigner VulDB

State PUBLISHED

Description

A security vulnerability has been detected in Portabilis i-Educar up to 2.9.10. Affected by this issue is some unknown functionality of the file app/Http/Controllers/AccessLevelController.php of the component User Type Handler. The manipulation leads to insecure inherited permissions. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used.

← Browse all CVEs View on cve.org ↗