5 matches found
CVE-2025-22598
WeGIA is a web manager for charitable institutions. A Stored Cross-Site Scripting XSS vulnerability was identified in the cadastrarSocio.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts into the localrecepcao parameter. The injected scripts ar...
CVE-2025-22598 WeGIA has a Cross-Site Scripting (XSS) Stored endpoint 'cadastrarSocio.php' parameter 'nome'
WeGIA is a web manager for charitable institutions. A Stored Cross-Site Scripting XSS vulnerability was identified in the cadastrarSocio.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts into the localrecepcao parameter. The injected scripts ar...
CVE-2025-22598
CVE-2025-22598 affects WeGIA (web manager for charitable welfare). The vulnerability is a Stored XSS in cadastrarSocio.php via the local_recepcao/local recepcao parameter. Malicious scripts are stored on the server and executed when the affected page is viewed. Exact impact is high for confidenti...
CVE-2025-22598 WeGIA has a Cross-Site Scripting (XSS) Stored endpoint 'cadastrarSocio.php' parameter 'nome'
WeGIA is a web manager for charitable institutions. A Stored Cross-Site Scripting XSS vulnerability was identified in the cadastrarSocio.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts into the localrecepcao parameter. The injected scripts ar...
PT-2025-4586 · Wegia · Wegia
Name of the Vulnerable Software and Affected Versions: WeGIA versions prior to 3.2.8 Description: A Stored Cross-Site Scripting XSS vulnerability was identified in the "cadastrarSocio.php" endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts into the...