The vulnerability in the WeGIA web manager’s script /html/funcionario/dependente_editarDoc.php allows a perpetrator to disclose confidential information, increase their privileges, or execute arbitrary code.

The vulnerability of the /html/funcionario/dependenteeditarDoc.php web manager of WeGIA is related to the failure to protect the SQL query structure when processing the parameter idatendidofamiliares. Exploiting this vulnerability can allow an attacker to disclose confidential information, enhanc...

WeGIA SQL Injection Vulnerability (CNVD-2025-17265)

WeGIA is a web manager for welfare organizations from the individual developer Nilson Lazarin. WeGIA suffers from an SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the /html/funcionario/dependenteeditarInfoPessoal.php endpoint...

WeGIA SQL Injection Vulnerability (CNVD-2025-17263)

WeGIA is a web manager for welfare organizations. WeGIA suffers from an SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the /html/funcionario/dependenteeditarDoc.php endpoint idatendidofamiliares parameter. An attacker could exploit...

WeGIA SQL注入漏洞

WeGIA is a web manager for welfare organizations. WeGIA suffers from an SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the /html/funcionario/dependenteeditarDoc.php endpoint idatendidofamiliares parameter. An attacker could exploit...

WeGIA 跨站脚本漏洞

WeGIA is a web manager for welfare organizations by the individual developer Nilson Lazarin. WeGIA has a cross-site scripting vulnerability that stems from a stored cross-site scripting vulnerability contained in the nome and SobrenomeForm parameters of the dependenteeditarInfoPessoal.php file...