3 matches found
CVE-2025-67496
WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Versions 3.5.4 and below contain a Stored Cross-Site Scripting XSS vulnerability in the /WeGIA/html/geral/configurarsenhas.php endpoint. The application does not sanitize user-controlled data before...
CVE-2025-67496 WeGia is Vulnerable to XSS through id_pessoa Parameter on Password Configuration Page
WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Versions 3.5.4 and below contain a Stored Cross-Site Scripting XSS vulnerability in the /WeGIA/html/geral/configurarsenhas.php endpoint. The application does not sanitize user-controlled data before...
PT-2025-50279
Name of the Vulnerable Software and Affected Versions WeGIA versions 3.5.4 and below Description WeGIA, an open source Web Manager for Institutions, is affected by a Stored Cross-Site Scripting XSS issue. The application fails to sanitize user-controlled data before rendering it within the employ...