13 matches found
CVE-2025-62359
WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Prior to 3.5.0, a Reflected Cross-Site Scripting XSS vulnerability was identified in the /pet/profilepet.php?idpet= endpoint of the WeGIA application. This vulnerability allows attackers to inject...
CVE-2025-62359
WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Prior to 3.5.0, a Reflected Cross-Site Scripting XSS vulnerability was identified in the /pet/profilepet.php?idpet= endpoint of the WeGIA application. This vulnerability allows attackers to inject...
CVE-2025-62359 WeGIA Cross-Site Scripting (XSS) Reflected endpoint id_pet
WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Prior to 3.5.0, a Reflected Cross-Site Scripting XSS vulnerability was identified in the /pet/profilepet.php?idpet= endpoint of the WeGIA application. This vulnerability allows attackers to inject...
CVE-2025-62359
WeGIA, an open source Web Manager, contains a reflected XSS in the /pet/profile_pet.php?id_pet= endpoint prior to version 3.5.0. The root cause is insufficient input validation/escaping of the id_pet parameter, enabling injection of malicious scripts. The vulnerability affects WeGIA up to 3.4.x a...
CVE-2025-62359 WeGIA Cross-Site Scripting (XSS) Reflected endpoint id_pet
WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Prior to 3.5.0, a Reflected Cross-Site Scripting XSS vulnerability was identified in the /pet/profilepet.php?idpet= endpoint of the WeGIA application. This vulnerability allows attackers to inject...
EUVD-2025-34095
WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Prior to 3.5.0, a Reflected Cross-Site Scripting XSS vulnerability was identified in the /pet/profilepet.php?idpet= endpoint of the WeGIA application. This vulnerability allows attackers to inject...
CVE-2025-62359 WeGIA Cross-Site Scripting (XSS) Reflected endpoint id_pet
WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Prior to 3.5.0, a Reflected Cross-Site Scripting XSS vulnerability was identified in the /pet/profilepet.php?idpet= endpoint of the WeGIA application. This vulnerability allows attackers to inject...
PT-2025-41820
Name of the Vulnerable Software and Affected Versions WeGIA versions prior to 3.5.0 Description WeGIA is a web management application designed for institutions, primarily targeting Portuguese language users. A Reflected Cross-Site Scripting XSS issue exists in the application. Attackers can injec...
EUVD-2025-32207
Malicious code in bioql PyPI...
CVE-2025-61605 WeGIA: SQL Injection (Blind Time-Based) Vulnerability in /pet/profile_pet.php Endpoint
WeGIA is an open source web manager with a focus on charitable institutions. Versions 3.4.12 and below contain an SQL Injection vulnerability which was identified in the /pet/profilepet.php endpoint, specifically in the idpet parameter. This vulnerability allows attackers to execute arbitrary SQL...
PT-2025-40426
Name of the Vulnerable Software and Affected Versions WeGIA versions 3.4.12 and below Description WeGIA is an open source web manager designed for charitable institutions. A SQL Injection issue exists in the id pet parameter of the '/pet/profile pet.php' API endpoint. This allows attackers to...
Malicious code in pet-profile-micro-interaction (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cd98e11aca525f441300cc29d3cebd96d52cee8d8620e951a805b48fe9305d33 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-1064 Malicious code in pet-profile-micro-interaction (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cd98e11aca525f441300cc29d3cebd96d52cee8d8620e951a805b48fe9305d33 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...