Metrics
Affected Vendors & Products
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
Wed, 10 Sep 2025 14:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:portabilis:i-diario:1.6:*:*:*:*:*:*:* |
Fri, 15 Aug 2025 21:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
Thu, 14 Aug 2025 13:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Portabilis
Portabilis i-diario |
|
Vendors & Products |
Portabilis
Portabilis i-diario |
Wed, 13 Aug 2025 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Wed, 13 Aug 2025 18:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A vulnerability was identified in Portabilis i-Diario 1.6. Affected by this vulnerability is an unknown functionality of the file /dicionario-de-termos-bncc of the component Dicionário de Termos BNCC Page. The manipulation of the argument Planos de ensino leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. | |
Title | Portabilis i-Diario Dicionário de Termos BNCC dicionario-de-termos-bncc cross site scripting | |
Weaknesses | CWE-79 CWE-94 |
|
References |
|
|
Metrics |
cvssV2_0
|

Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2025-08-15T21:09:43.139Z
Reserved: 2025-08-13T10:53:04.528Z
Link: CVE-2025-8920

Updated: 2025-08-13T18:24:41.157Z

Status : Analyzed
Published: 2025-08-13T18:15:35.423
Modified: 2025-09-10T14:38:53.570
Link: CVE-2025-8920

No data.

Updated: 2025-08-14T12:50:55Z