Princival

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. (affected versions not specified) Description: The component Login Page contains an issue with improper restriction of rendered UI layers due to manipulation of an unknown function. This issue can be exploited remotely. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Portabilis i-Diario versions prior to 1.5.1 Description: A security flaw has been discovered in Portabilis i-Diario. The vulnerability affects an unknown functionality of the file `/password/email` within the Password Recovery Endpoint component. This results in a response discrepancy, and the attack can be launched remotely. Exploitation is considered difficult, despite the public release of an exploit. Recommendations: Update Portabilis i-Diario to version 1.5.1 or later.