Wegia

Wegia

162 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2025-30363

Exploit
  • EPSS 0.15%
  • Veröffentlicht 27.03.2025 16:26:08
  • Zuletzt bearbeitet 10.04.2025 15:09:44

WeGIA is a Web manager for charitable institutions. A stored Cross-Site Scripting (XSS) vulnerability was identified in versions prior to 3.2.6. This vulnerability allows unauthorized scripts to be executed within the user's browser context. Stored X...

5.4

CVE-2025-30362

Exploit
  • EPSS 0.14%
  • Veröffentlicht 27.03.2025 16:23:55
  • Zuletzt bearbeitet 10.04.2025 15:14:58

WeGIA is a Web manager for charitable institutions. A stored Cross-Site Scripting (XSS) vulnerability was identified in versions prior to 3.2.8. This vulnerability allows unauthorized scripts to be executed within the user's browser context. Stored X...

9.8

CVE-2025-30361

Exploit
  • EPSS 0.23%
  • Veröffentlicht 27.03.2025 16:22:42
  • Zuletzt bearbeitet 10.04.2025 15:16:33

WeGIA is a Web manager for charitable institutions. A security vulnerability was identified in versions prior to 3.2.6, where it is possible to change a user's password without verifying the old password. This issue exists in the control.php endpoint...

5.4

CVE-2025-29782

Exploit
  • EPSS 0.22%
  • Veröffentlicht 14.03.2025 19:15:49
  • Zuletzt bearbeitet 25.03.2025 20:12:23

WeGIA is Web manager for charitable institutions A Stored Cross-Site Scripting (XSS) vulnerability was identified in the `adicionar_tipo_docs_atendido.php` endpoint in versions of the WeGIA application prior to 3.2.17. This vulnerability allows attac...

6.1

CVE-2025-27499

Exploit
  • EPSS 0.21%
  • Veröffentlicht 03.03.2025 19:15:36
  • Zuletzt bearbeitet 06.03.2025 12:21:35

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A Stored Cross-Site Scripting (XSS) vulnerability was identified in the processa_edicao_socio.php endpoint of the WeGIA application. This vulnerability al...

7.5

CVE-2025-27419

Exploit
  • EPSS 0.85%
  • Veröffentlicht 03.03.2025 16:15:44
  • Zuletzt bearbeitet 07.03.2025 19:45:52

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A Denial of Service (DoS) vulnerability exists in WeGIA. This vulnerability allows any unauthenticated user to cause the server to become unresponsive by ...

5.4

CVE-2025-27420

Exploit
  • EPSS 0.22%
  • Veröffentlicht 03.03.2025 16:15:44
  • Zuletzt bearbeitet 10.04.2025 18:29:26

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A Stored Cross-Site Scripting (XSS) vulnerability was identified in the atendido_parentesco_adicionar.php endpoint of the WeGIA application. This vulnerab...

6.1

CVE-2025-27417

Exploit
  • EPSS 0.21%
  • Veröffentlicht 03.03.2025 16:15:43
  • Zuletzt bearbeitet 11.04.2025 19:11:56

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A Stored Cross-Site Scripting (XSS) vulnerability was identified in the adicionar_status_atendido.php endpoint of the WeGIA application. This vulnerabilit...

5.4

CVE-2025-27418

Exploit
  • EPSS 0.08%
  • Veröffentlicht 03.03.2025 16:15:43
  • Zuletzt bearbeitet 10.04.2025 18:37:15

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A Stored Cross-Site Scripting (XSS) vulnerability was identified in the adicionar_tipo_atendido.php endpoint of the WeGIA application. This vulnerability ...

9.8

CVE-2025-27140

Exploit
  • EPSS 6.01%
  • Veröffentlicht 24.02.2025 22:15:22
  • Zuletzt bearbeitet 28.02.2025 16:07:41

WeGIA is a Web manager for charitable institutions. An OS Command Injection vulnerability was discovered in versions prior to 3.2.15 of the WeGIA application, `importar_dump.php` endpoint. This vulnerability could allow an attacker to execute arbitra...