Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/09/10 11:17 p.m.6 views

CVE-2025-58453

WeGIA is a Web manager for charitable institutions. A SQL Injection vulnerability was identified in WeGIA versions 3.4.10 and prior in the endpoint /WeGIA/html/memorando/exibeanexo.php, in the idanexo parameter. This vulnerability allow an authorized attacker to execute arbitrary SQL queries,...

9.3CVSS8.1AI score0.00336EPSS
Exploits1References1
NVD
NVD
added 2025/09/08 11:15 p.m.9 views

CVE-2025-58453

WeGIA is a Web manager for charitable institutions. A SQL Injection vulnerability was identified in WeGIA versions 3.4.10 and prior in the endpoint /WeGIA/html/memorando/exibeanexo.php, in the idanexo parameter. This vulnerability allow an authorized attacker to execute arbitrary SQL queries,...

9.3CVSS0.00336EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/09/08 10:28 p.m.12 views

CVE-2025-58453 WeGIA vulnerable to Blind Time-Based SQL Injection in endpoint 'exibe_anexo.php' parameter 'id_anexo'

WeGIA is a Web manager for charitable institutions. A SQL Injection vulnerability was identified in WeGIA versions 3.4.10 and prior in the endpoint /WeGIA/html/memorando/exibeanexo.php, in the idanexo parameter. This vulnerability allow an authorized attacker to execute arbitrary SQL queries,...

9.3CVSS7.6AI score0.00336EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/09/08 10:28 p.m.10 views

CVE-2025-58453 WeGIA vulnerable to Blind Time-Based SQL Injection in endpoint 'exibe_anexo.php' parameter 'id_anexo'

WeGIA is a Web manager for charitable institutions. A SQL Injection vulnerability was identified in WeGIA versions 3.4.10 and prior in the endpoint /WeGIA/html/memorando/exibeanexo.php, in the idanexo parameter. This vulnerability allow an authorized attacker to execute arbitrary SQL queries,...

9.3CVSS0.00336EPSS
Exploits1References1
OSV
OSV
added 2025/09/08 10:28 p.m.8 views

CVE-2025-58453 WeGIA vulnerable to Blind Time-Based SQL Injection in endpoint 'exibe_anexo.php' parameter 'id_anexo'

WeGIA is a Web manager for charitable institutions. A SQL Injection vulnerability was identified in WeGIA versions 3.4.10 and prior in the endpoint /WeGIA/html/memorando/exibeanexo.php, in the idanexo parameter. This vulnerability allow an authorized attacker to execute arbitrary SQL queries,...

9.3CVSS8.1AI score0.00336EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/09/08 12:0 a.m.10 views

PT-2025-36522

Name of the Vulnerable Software and Affected Versions: WeGIA versions 3.4.10 and prior Description: WeGIA is a Web manager for charitable institutions. A SQL Injection vulnerability exists in the /WeGIA/html/memorando/exibe anexo.php API endpoint, specifically in the id anexo parameter. This allo...

9.3CVSS7.7AI score0.00336EPSS
Exploits1References7
Rows per page
Query Builder