CVE-2025-23220
The CVE pertains to WeGIA, an open-source web manager for welfare organizations. A SQL Injection exists in the adicionar_raca.php endpoint (parameter raca), allowing attackers to execute arbitrary SQL and potentially dump the database. This vulnerability has a critical impact (high confidentialit...