CVE-2025-7872 | Portabilis i-Diario 1.5.0 Justificativa cross site scripting

Inserito da Angelo Barbosa | Lug 19, 2025 | CVE

A vulnerability was found in Portabilis i-Diario 1.5.0 and classified as problematic. This issue affects some unknown processing. The manipulation of the argument Justificativa leads to cross site scripting.

The identification of this vulnerability is CVE-2025-7872. The attack may be initiated remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-7872 | Portabilis i-Diario 1.5.0 Justificativa cross site scripting

Post correlati

CVE-2024-28121 | stimulus_reflex unknown vulnerability

CVE-2025-5786 | TOTOLINK X15 1.0.0-B20230714.1105 HTTP POST Request /boafrm/formDMZ submit-url buffer overflow

CVE-2025-27412 | Redaxo CMS up to 5.18.2 AddOns Page rex-api-result cross site scripting (GHSA-8366-xmgf-334f)

CVE-2024-8360 | Visteon Infotainment REFLASH_DDU_ExtractFile command injection (ZDI-24-1192)