CVE-2025-8920 | Portabilis i-Diario 1.6 Dicionário de Termos BNCC Page dicionario-de-termos-bncc Planos de ensino cross site scripting

A vulnerability classified as problematic was found in Portabilis i-Diario 1.6. Affected by this vulnerability is an unknown functionality of the file /dicionario-de-termos-bncc of the component Dicionário de Termos BNCC Page. The manipulation of the argument Planos de ensino leads to cross site scripting.

This vulnerability is known as CVE-2025-8920. The attack can be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More