27 matches found
CVE-2025-23030
WeGIA (Web manager) contains a Reflected Cross-Site Scripting (XSS) vulnerability in the cadastro_funcionario.php endpoint, exploitable via the cpf parameter due to lack of input validation/sanitization. The issue is reflected in the response and executed in the victim’s browser. According to Red...
CVE-2025-22615
WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Scripting XSS vulnerability was identified in the CadastroAtendido.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts...
CVE-2025-22615 WeGIA Cross-Site Scripting (XSS) Reflected endpoint 'Cadastro_Atendido.php' parameter 'cpf'
WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Scripting XSS vulnerability was identified in the CadastroAtendido.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts...
CVE-2025-22615 WeGIA Cross-Site Scripting (XSS) Reflected endpoint 'Cadastro_Atendido.php' parameter 'cpf'
WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Scripting XSS vulnerability was identified in the CadastroAtendido.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts...
PT-2025-4776 · Wegia · Wegia
Name of the Vulnerable Software and Affected Versions: WeGIA versions prior to 3.2.6 Description: A Reflected Cross-Site Scripting XSS vulnerability was identified in the cadastro funcionario.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts in...
WeGIA 跨站脚本漏洞
WeGIA is a web manager for welfare organizations by the individual developer Nilson Lazarin. WeGIA suffers from a cross-site scripting vulnerability that stems from a reflected cross-site scripting vulnerability contained in the cpf parameter of the CadastroAtendido.php file...
PT-2025-4601 · Wegia · Wegia
Name of the Vulnerable Software and Affected Versions: WeGIA versions prior to 3.2.6 Description: WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Scripting XSS vulnerability was identified in the Cadastro Atendido.php...