CVE-2025-9109 | Portabilis i-Diario up to 1.5.0 Password Recovery Endpoint /password/email observable response discrepancy

Inserito da Angelo Barbosa | Ago 17, 2025 | CVE

A vulnerability described as problematic has been identified in Portabilis i-Diario up to 1.5.0. Affected by this vulnerability is an unknown functionality of the file /password/email of the component Password Recovery Endpoint. The manipulation leads to observable response discrepancy.

This vulnerability is known as CVE-2025-9109. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2025-9109 | Portabilis i-Diario up to 1.5.0 Password Recovery Endpoint /password/email observable response discrepancy

Post correlati

CVE-2023-50303 | IBM InfoSphere Information Server 11.7 Web UI cross site scripting (XFDB-273333)

CVE-2024-51127 | hornetq 2.4.9 createTempFile information disclosure

CVE-2023-48194 | Tenda AC8v4 16.03.34.09 set_client_qos memory corruption

CVE-2024-22276 | VMware Cloud Director Object Storage Extension 2.x/3.0 Web Proxy Server Logging information disclosure