CVE-2026-23728
WeGIA (web manager for charitable institutions) prior to version 3.6.2 is affected by an Open Redirect vulnerability in the /WeGIA/controle/control.php endpoint. The issue is triggered via the nextPage parameter when used with metodo=listarTodos and nomeClasse=DestinoControle, where the applicati...