CNNVD-202508-2005 Information

CNNVD ID

CNNVD-202508-2005

Related CVE

CVE-2025-9109

• CNNVD Published: 2025-08-18

Description (Chinese)

Portabilis i‑Diário是巴西Portabilis开源的一个学校教学日历与教师互动管理系统。 Portabilis i‑Diário 1.5.0及之前版本存在安全漏洞，该漏洞源于组件Password Recovery Endpoint在响应时存在差异，可被远程攻击者利用进行用户枚举攻击。

Description (English)

Portabilis i-Diário is an interactive management system for school calendars and teachers that is an open source in Portabilis, Brazil. Portabilis i-Diário 1.5.0 and previous versions contain a security loophole stemming from the difference in the response of the component Password Recovery Endpoint, which can be used by remote assailants to carry out a user count.

Hazard Level

Critical

Vulnerability Type

其他

Published

2025-08-18

Last Modified

2026-02-24

References

https://vuldb.com/?ctiid.320431 https://vuldb.com/?submit.627926 https://vuldb.com/?id.320431 https://nvd.nist.gov/vuln/detail/CVE-2025-9109