3 matches found
CVE-2025-23035
WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scripting XSS vulnerability was identified in the adicionartipoquadrohorario.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious...
CVE-2025-23035
CVE-2025-23035 affects WeGIA (an open-source web manager for Portuguese charitable organizations). A Stored XSS was found in the endpoint adicionar_tipo_quadro_horario.php via the tipo parameter. The issue arises from inadequate validation/sanitization of user input, allowing malicious scripts to...
CVE-2025-23035 Cross-Site Scripting (XSS) Stored endpoint 'adicionar_tipo_quadro_horario.php' parameter 'tipo' in WeGIA
WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scripting XSS vulnerability was identified in the adicionartipoquadrohorario.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious...