2 matches found
CVE-2025-24020
WeGIA is a Web manager for charitable institutions. An Open Redirect vulnerability was identified in the control.php endpoint of versions up to and including 3.2.10 of the WeGIA application. The vulnerability allows the nextPage parameter to be manipulated, redirecting authenticated users to...
CVE-2025-24020
WeGIA Open Redirect (CVE-2025-24020) affects WeGIA Web Manager versions up to 3.2.10. The vulnerability is in control.php where the nextPage parameter is not validated, allowing an authenticated user to be redirected to arbitrary external URLs. This can enable phishing or user redirection to mali...