CVE-2025-57763
CVE-2025-57763 affects WeGIA (Web manager for charitable institutions) prior to version 3.4.7. The vulnerability is a reflected Cross-Site Scripting (XSS) in the insere_despacho.php endpoint, allowing injection of malicious scripts via the cpf sccs parameter. The issue is fixed in 3.4.7. No explo...