Lucene search
K

11 matches found

NVD
NVD
added 2025/10/13 10:15 p.m.17 views

CVE-2025-62178

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Prior to 3.5.1, a Reflected Cross-Site Scripting XSS vulnerability was identified in the /html/atendido/cadastroatendidoparentescopessoanova.php endpoint of the WeGIA application. This vulnerability...

5.4CVSS0.00214EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/10/13 9:12 p.m.3 views

CVE-2025-62178 WeGIA Cross-Site Scripting (XSS) Reflected endpoint '/html/atendido/cadastro_atendido_parentesco_pessoa_nova.php' parameter 'idatendido'

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Prior to 3.5.1, a Reflected Cross-Site Scripting XSS vulnerability was identified in the /html/atendido/cadastroatendidoparentescopessoanova.php endpoint of the WeGIA application. This vulnerability...

3.5CVSS5.4AI score0.00214EPSS
Exploits1References3
CVE
CVE
added 2025/10/13 9:12 p.m.16 views

CVE-2025-62178

WeGIA (open source Web Manager for Institutions) prior to version 3.5.1 is affected by a Reflected XSS in the endpoint /html/atendido/cadastro_atendido_parentesco_pessoa_nova.php, where the idatendido parameter can be exploited to inject scripts. The vulnerability, described across multiple sourc...

5.4CVSS5.4AI score0.00214EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2025/10/13 9:12 p.m.5 views

CVE-2025-62178 WeGIA Cross-Site Scripting (XSS) Reflected endpoint '/html/atendido/cadastro_atendido_parentesco_pessoa_nova.php' parameter 'idatendido'

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Prior to 3.5.1, a Reflected Cross-Site Scripting XSS vulnerability was identified in the /html/atendido/cadastroatendidoparentescopessoanova.php endpoint of the WeGIA application. This vulnerability...

3.5CVSS5.8AI score0.00214EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/10/13 12:0 a.m.7 views

WeGIA 跨站脚本漏洞

WeGIA is a web manager for welfare organizations by the individual developer Nilson Lazarin. A cross-site scripting vulnerability exists in WeGIA versions prior to 3.5.1, which originates from an unvalidated entry of the idatendido parameter in the...

5.4CVSS5.9AI score0.00214EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2025/08/05 12:0 a.m.6 views

The vulnerability in the WeGIA web manager’s script pre_cadastro_atendido.php allows a violator to perform cross-site scripting attacks.

The vulnerability in the WeGIA web manager’s script precadastroatendido.php is related to insufficient protection of the website structure when processing the msge parameter. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...

7.8CVSS5.2AI score0.0024EPSS
Exploits1References4Affected Software1
CNVD
CNVD
added 2025/07/25 12:0 a.m.6 views

WeGIA Cross-Site Scripting Vulnerability (CNVD-2025-17254)

WeGIA is a web manager for welfare organizations. WeGIA suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the precadastroatendido.php endpoint, for which no detailed vulnerability details are currently available...

6.5CVSS6.3AI score0.0024EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/07/18 12:0 a.m.4 views

WeGIA 跨站脚本漏洞

WeGIA is a web manager for welfare organizations. WeGIA suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the precadastroatendido.php endpoint, for which no detailed vulnerability details are currently available...

6.5CVSS6.2AI score0.0024EPSS
Exploits1References2
CNVD
CNVD
added 2025/07/04 12:0 a.m.2 views

WeGIA Cross-Site Scripting Vulnerability (CNVD-2025-17299)

WeGIA is a web manager for welfare organizations. WeGIA suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data by the parameter Nome/Sobrenome in the file /html/atendido/CadastroAtendido.php, no details of the...

5.1CVSS6.3AI score0.0031EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/06/26 12:0 a.m.3 views

WeGIA 代码注入漏洞

WeGIA is a web manager for welfare organizations. WeGIA suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data by the parameter Nome/Sobrenome in the file /html/atendido/CadastroAtendido.php, no details of the...

5.1CVSS6.2AI score0.0031EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/01/13 12:0 a.m.4 views

WeGIA 跨站脚本漏洞

WeGIA is a web manager for welfare organizations by the individual developer Nilson Lazarin. WeGIA suffers from a cross-site scripting vulnerability that stems from a reflected cross-site scripting vulnerability contained in the cpf parameter of the CadastroAtendido.php file...

6.4CVSS4.2AI score0.00283EPSS
Exploits1References2
Rows per page
Query Builder