Lucene search
K

28 matches found

CNNVD
CNNVD
added 2025/10/02 12:0 a.m.6 views

WeGIA 安全漏洞

WeGIA is a web manager for welfare organizations by Nilson Lazarin Individual Developer. A security vulnerability exists in WeGIA 3.4.12 and prior versions that stems from improper access control and could allow an unauthenticated attacker to gain direct access to sensitive information...

8.7CVSS6.7AI score0.00446EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/10/02 12:0 a.m.6 views

WeGIA 安全漏洞

WeGIA is a web manager for welfare organizations by the individual developer Nilson Lazarin. A security vulnerability exists in WeGIA 3.4.12 and earlier versions that stems from an open redirection in the nextPage parameter, which could cause users to be redirected to an arbitrary external domain...

6.1CVSS6.7AI score0.00208EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/09/27 12:0 a.m.3 views

WeGIA SQL注入漏洞

WeGIA is a web manager for welfare organizations by the individual developer Nilson Lazarin. An SQL injection vulnerability exists in WeGIA versions prior to 3.5.0 that stems from improper handling of the idproduto parameter in the control.php endpoint, which could lead to an SQL injection attack...

8.8CVSS7.5AI score0.00348EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/08/21 12:0 a.m.7 views

WeGIA 安全漏洞

WeGIA is a web manager for welfare organizations by the individual developer Nilson Lazarin. A security vulnerability exists in WeGIA versions prior to 3.4.7, which stems from the presence of reflective cross-site scripting in the msge parameter in the precadastroadotante.php endpoint, which coul...

8.2CVSS6AI score0.00289EPSS
Exploits1References3
CNVD
CNVD
added 2025/07/25 12:0 a.m.2 views

WeGIA Cross-Site Scripting Vulnerability (CNVD-2025-17259)

WeGIA is a web manager for welfare organizations. WeGIA suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the adicionarraca.php endpoint raca parameter, no details of the vulnerability are provided at this time...

6.4CVSS6.3AI score0.0025EPSS
Exploits1References1
CNVD
CNVD
added 2025/07/25 12:0 a.m.6 views

WeGIA Cross-Site Scripting Vulnerability (CNVD-2025-17254)

WeGIA is a web manager for welfare organizations. WeGIA suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the precadastroatendido.php endpoint, for which no detailed vulnerability details are currently available...

6.5CVSS6.3AI score0.0024EPSS
Exploits1References1
CNVD
CNVD
added 2025/07/21 12:0 a.m.3 views

WeGIA Cross-Site Scripting Vulnerability (CNVD-2025-17283)

WeGIA is a web manager for welfare organizations. WeGIA suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the index.php endpoint, no details of the vulnerability are provided at this time...

6.5CVSS6.3AI score0.0024EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/07/16 12:0 a.m.4 views

WeGIA 跨站脚本漏洞

WeGIA is a web manager for welfare organizations. WeGIA suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the control.php endpoint descricaoemergencia parameter, for which no detailed vulnerability details are...

6.4CVSS6.2AI score0.0025EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/07/16 12:0 a.m.6 views

WeGIA 访问控制错误漏洞

WeGIA is a web manager for welfare organizations. WeGIA has an access control error vulnerability that can be exploited by an attacker to cause an unauthenticated user to access protected functionality...

7.5CVSS6.9AI score0.00626EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/07/16 12:0 a.m.4 views

WeGIA 跨站脚本漏洞

WeGIA is a web manager for welfare organizations. WeGIA suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data by the adicionarespecie.php endpoint especie parameter, no details of the vulnerability are provided at this...

6.4CVSS6.2AI score0.0025EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/07/16 12:0 a.m.5 views

WeGIA 跨站脚本漏洞

WeGIA is a web manager for welfare organizations from the individual developer Nilson Lazarin. WeGIA suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data by the cadastroadotante.php endpoint cpf parameter, no details ...

6.4CVSS6.2AI score0.00271EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/07/07 12:0 a.m.5 views

WeGIA 跨站脚本漏洞

WeGIA is a web manager for welfare organizations. WeGIA suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in novomemorando.php, which can be exploited by an attacker to execute injected scripts in a browser...

6.1CVSS6.1AI score0.00238EPSS
Exploits1References3
CNNVD
CNNVD
added 2025/07/07 12:0 a.m.3 views

WeGIA 安全漏洞

WeGIA is a web manager for welfare organizations. WeGIA suffers from a denial of service vulnerability that stems from the length of the errorstr parameter not being validated, which can be exploited by an attacker to cause a denial of service...

8.7CVSS6.5AI score0.00392EPSS
Exploits1References2
CNVD
CNVD
added 2025/07/07 12:0 a.m.3 views

WeGIA SQL Injection Vulnerability (CNVD-2025-17294)

WeGIA is a web manager for welfare organizations from the individual developer Nilson Lazarin. WeGIA suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the almox parameter of the /controle/getProdutosPorAlmox.php endpoint. An...

10CVSS8.2AI score0.00457EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/07/07 12:0 a.m.3 views

WeGIA 安全漏洞

WeGIA is a web manager for welfare organizations. WeGIA suffers from a denial of service vulnerability that stems from the length of the fid parameter not being validated, which can be exploited by an attacker to cause a denial of service...

8.7CVSS6.4AI score0.00392EPSS
Exploits1References2
CNVD
CNVD
added 2025/07/04 12:0 a.m.2 views

WeGIA Cross-Site Scripting Vulnerability (CNVD-2025-17298)

WeGIA is a web manager for welfare organizations. WeGIA suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in /html/matPat/adicionarunidade.php, no details of the vulnerability are provided at this time...

5.1CVSS6.3AI score0.00313EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/06/26 12:0 a.m.5 views

WeGIA 代码注入漏洞

WeGIA is a web manager for welfare organizations. WeGIA suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the file /html/matPat/adicionarcategoria.php, no details of the vulnerability are provided at this time...

5.1CVSS6.2AI score0.0031EPSS
Exploits1References4
CNVD
CNVD
added 2025/06/24 12:0 a.m.4 views

WeGIA SQL Injection Vulnerability (CNVD-2025-17301)

WeGIA is a web manager for welfare organizations. WeGIA suffers from an SQL injection vulnerability that can be exploited by an attacker to view, add, modify, or delete information in the back-end database...

9.8CVSS7.8AI score0.00418EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/03/27 12:0 a.m.2 views

WeGIA 授权问题漏洞

WeGIA is a web manager for welfare organizations by the individual developer Nilson Lazarin. An authorization issue vulnerability exists in WeGIA versions prior to 3.2.6 that stems from the ability to change a user's password without verifying the old password...

9.8CVSS6.6AI score0.00521EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/03/27 12:0 a.m.5 views

WeGIA 跨站脚本漏洞

WeGIA is a web manager for welfare organizations. WeGIA suffers from a cross-site scripting vulnerability for which no detailed vulnerability details are currently available...

6.4CVSS6.2AI score0.00256EPSS
Exploits1References2
Rows per page
Query Builder