A vulnerability was found in vTiger CRM 8.4.0 . It has been rated as problematic . The impacted element is an unknown function of the component MailManager Module . The manipulation of the argument _folder leads to cross site scripting. This vulnerability is uniquely identified as CVE-2025-70936 . The attack is possible to be carried out remotely. No exploit exists.