CVE-2025-8919 | Portabilis i-Diario up to 1.6 History Page objetivos-de-aprendizagem-e-habilidades código/objetivo habilidade cross site scripting

Inserito da Angelo Barbosa | Ago 13, 2025 | CVE

A vulnerability classified as problematic has been found in Portabilis i-Diario up to 1.6. Affected is an unknown function of the file /objetivos-de-aprendizagem-e-habilidades of the component History Page. The manipulation of the argument código/objetivo habilidade leads to cross site scripting.

This vulnerability is traded as CVE-2025-8919. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-8919 | Portabilis i-Diario up to 1.6 History Page objetivos-de-aprendizagem-e-habilidades código/objetivo habilidade cross site scripting

Post correlati

CVE-2024-41114 | opengeos streamlit-geospatial 1_ eval palette input validation (GHSL-2024-100)

CVE-2024-41014 | Linux Kernel up to 6.10 xfs xlog_recover_process_data out-of-bounds (fb63435b7c7d)

CVE-2024-45096 | IBM Aspera Faspex up to 5.0.9 exposure of information through directory listing

CVE-2024-10885 | SearchIQ Plugin up to 4.6 on WordPress cross site scripting