Lucene search
+L

27 matches found

CVE
CVE
added 2025/01/13 11:34 p.m.66 views

CVE-2025-23030

WeGIA (Web manager) contains a Reflected Cross-Site Scripting (XSS) vulnerability in the cadastro_funcionario.php endpoint, exploitable via the cpf parameter due to lack of input validation/sanitization. The issue is reflected in the response and executed in the victim’s browser. According to Red...

6.4CVSS5.8AI score0.003EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2025/01/13 9:15 p.m.39 views

CVE-2025-22615

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Scripting XSS vulnerability was identified in the CadastroAtendido.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts...

6.4CVSS0.00288EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/01/13 8:57 p.m.9 views

CVE-2025-22615 WeGIA Cross-Site Scripting (XSS) Reflected endpoint 'Cadastro_Atendido.php' parameter 'cpf'

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Scripting XSS vulnerability was identified in the CadastroAtendido.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts...

6.4CVSS6AI score0.00288EPSS
Exploits1References2
OSV
OSV
added 2025/01/13 8:57 p.m.19 views

CVE-2025-22615 WeGIA Cross-Site Scripting (XSS) Reflected endpoint 'Cadastro_Atendido.php' parameter 'cpf'

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Scripting XSS vulnerability was identified in the CadastroAtendido.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts...

6.4CVSS4.4AI score0.00288EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/01/13 12:0 a.m.8 views

PT-2025-4776 · Wegia · Wegia

Name of the Vulnerable Software and Affected Versions: WeGIA versions prior to 3.2.6 Description: A Reflected Cross-Site Scripting XSS vulnerability was identified in the cadastro funcionario.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts in...

6.4CVSS3.7AI score0.003EPSS
Exploits1References10
CNNVD
CNNVD
added 2025/01/13 12:0 a.m.4 views

WeGIA 跨站脚本漏洞

WeGIA is a web manager for welfare organizations by the individual developer Nilson Lazarin. WeGIA suffers from a cross-site scripting vulnerability that stems from a reflected cross-site scripting vulnerability contained in the cpf parameter of the CadastroAtendido.php file...

6.4CVSS4.2AI score0.00288EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/01/13 12:0 a.m.8 views

PT-2025-4601 · Wegia · Wegia

Name of the Vulnerable Software and Affected Versions: WeGIA versions prior to 3.2.6 Description: WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Scripting XSS vulnerability was identified in the Cadastro Atendido.php...

6.4CVSS3.7AI score0.00288EPSS
Exploits1References11
Rows per page
Query Builder