Wegia

Wegia

147 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2025-53377

Exploit
  • EPSS 0.03%
  • Veröffentlicht 07.07.2025 16:19:56
  • Zuletzt bearbeitet 10.07.2025 14:56:26

WeGIA is a web manager for charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the cadastro_dependente_pessoa_nova.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malici...

9.8

CVE-2025-53091

Exploit
  • EPSS 0.22%
  • Veröffentlicht 27.06.2025 15:15:25
  • Zuletzt bearbeitet 08.07.2025 14:48:01

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Time-Based Blind SQL Injection vulnerability was discovered in version 3.3.3 the almox parameter of the `/controle/getProdutosPorAlmox.php` end...

4.1

CVE-2025-6699

Exploit
  • EPSS 0.04%
  • Veröffentlicht 26.06.2025 15:31:12
  • Zuletzt bearbeitet 01.07.2025 15:42:08

A vulnerability classified as problematic has been found in LabRedesCefetRJ WeGIA 3.4.0. This affects an unknown part of the file /html/funcionario/cadastro_funcionario.php of the component Cadastro de Funcionário. The manipulation of the argument No...

4.1

CVE-2025-6698

Exploit
  • EPSS 0.04%
  • Veröffentlicht 26.06.2025 15:15:25
  • Zuletzt bearbeitet 01.07.2025 17:46:03

A vulnerability was found in LabRedesCefetRJ WeGIA 3.4.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /html/matPat/adicionar_tipoSaida.php of the component Adicionar tipo. The manipulation of the...

4.1

CVE-2025-6697

Exploit
  • EPSS 0.04%
  • Veröffentlicht 26.06.2025 15:15:24
  • Zuletzt bearbeitet 01.07.2025 17:57:54

A vulnerability was found in LabRedesCefetRJ WeGIA 3.4.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /html/matPat/adicionar_tipoEntrada.php of the component Adicionar tipo. The manipula...

4.1

CVE-2025-6696

Exploit
  • EPSS 0.04%
  • Veröffentlicht 26.06.2025 14:31:05
  • Zuletzt bearbeitet 01.07.2025 18:00:07

A vulnerability was found in LabRedesCefetRJ WeGIA 3.4.0. It has been classified as problematic. Affected is an unknown function of the file /html/atendido/Cadastro_Atendido.php of the component Cadastro de Atendio. The manipulation of the argument N...

4.1

CVE-2025-6695

Exploit
  • EPSS 0.04%
  • Veröffentlicht 26.06.2025 13:31:06
  • Zuletzt bearbeitet 01.07.2025 18:18:08

A vulnerability was found in LabRedesCefetRJ WeGIA 3.4.0 and classified as problematic. This issue affects some unknown processing of the file /html/matPat/adicionar_categoria.php of the component Additional Categoria. The manipulation of the argumen...

4.1

CVE-2025-6694

Exploit
  • EPSS 0.04%
  • Veröffentlicht 26.06.2025 13:31:05
  • Zuletzt bearbeitet 01.07.2025 19:03:59

A vulnerability has been found in LabRedesCefetRJ WeGIA 3.4.0 and classified as problematic. This vulnerability affects unknown code of the file /html/matPat/adicionar_unidade.php of the component Adicionar Unidade. The manipulation of the argument I...

9.8

CVE-2025-52474

Exploit
  • EPSS 0.05%
  • Veröffentlicht 19.06.2025 03:40:47
  • Zuletzt bearbeitet 02.07.2025 16:18:45

WeGIA is a web manager for charitable institutions. Prior to version 3.4.2, a SQL Injection vulnerability was identified in the id parameter of the /WeGIA/controle/control.php endpoint. This vulnerability allows attacker to manipulate SQL queries and...

9.8

CVE-2025-50201

Exploit
  • EPSS 58.93%
  • Veröffentlicht 19.06.2025 03:34:29
  • Zuletzt bearbeitet 02.07.2025 16:21:03

WeGIA is a web manager for charitable institutions. Prior to version 3.4.2, an OS Command Injection vulnerability was identified in the /html/configuracao/debug_info.php endpoint. The branch parameter is not properly sanitized before being concatenat...