6 matches found
CVE-2026-40286
WeGIA is a web manager for charitable institutions. In versions prior to 3.6.10, a Stored Cross-Site Scripting XSS vulnerability was identified in the 'Member Registration' Cadastrar Sócio function. By injecting a payload into the 'Member Name' Nome Sócio field, the script is persistently stored ...
CVE-2026-40284
CVE-2026-40284 affects WeGIA, a web manager for charitable institutions. In versions before 3.6.10, there is a Stored Cross-Site Scripting (XSS) vulnerability that allows an authenticated user to inject malicious JavaScript through the Destino, Destinatário field (payload stored and later execute...
WeGIA 安全漏洞
WeGIA is a network manager for the welfare organization developed by Nilson Lazarin. Versions of WeGIA prior to 3.6.10 contained security vulnerabilities, which were caused by improper handling of the cpfusuario parameter in the dao/memorando/UsuarioDAO.php file. This improper handling could lead...
PT-2020-12303 · Moodle +1 · Moodle +1
Name of the Vulnerable Software and Affected Versions: Moodle versions 3.8 before 3.8.3 Moodle versions 3.7 before 3.7.6 Moodle versions 3.6 before 3.6.10 Moodle versions 3.5 before 3.5.12 Moodle earlier unsupported versions Description: A flaw was found in Moodle that allows creating a SCORM...
Bolt CMS Cross-Site Scripting Vulnerability (CNVD-2019-29167)
Bolt CMS is a PHP-based open source content management system for the Bolt community. A cross-site scripting vulnerability exists in Bolt CMS versions prior to 3.6.10, which can be exploited by an attacker to execute client-side code...
Bolt CMS Cross-Site Scripting Vulnerability (CNVD-2019-29166)
Bolt CMS is a PHP-based open source content management system for the Bolt community. A cross-site scripting vulnerability exists in the Controller/Async/FilesystemManager.php file in Bolt CMS versions prior to 3.6.10, which can be exploited by an attacker to execute client-side code...