CVE-2025-5713

Name of the Vulnerable Software and Affected Versions SoluçõesCoop iSoluçõesWEB versions prior to 20250519

Description A problem was found in some unknown functionality of the file /fluxos-dashboard of the component Flow Handler. The manipulation of the Descrição da solicitação argument leads to cross site scripting attacks. These attacks can be executed remotely. The exploit has been publicly disclosed and could be used.

Recommendations For versions prior to 20250519, update the affected component to resolve the issue. As a temporary workaround, consider restricting access to the /fluxos-dashboard file of the Flow Handler component to minimize the risk of exploitation. Avoid using the Descrição da solicitação argument in the affected functionality until the issue is resolved.