CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

131 matches found

CVE-2026-45335

WeGIA is a web manager for charitable institutions. Prior to 3.7.3, an Open Redirect vulnerability was identified in the /WeGIA/controle/control.php endpoint of the WeGIA application, specifically through the nextPage parameter when combined with metodo=listarTodos and nomeClasse=InternoControle...

5.4CVSS5.9AI score0.00028EPSS

Exploits0References1

NVD•added 2026/05/27 5:16 p.m.•7 views

CVE-2026-45335

5.4CVSS0.00028EPSS

Exploits0References1

ATTACKERKB•added 2026/05/27 3:25 p.m.•4 views

CVE-2026-45335

5.4CVSS5.9AI score0.00028EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2026/05/27 3:25 p.m.•2 views

CVE-2026-45335 WeGIA: Middleware whitelist bypass → open redirect via InternoControle.nextPage

5.4CVSS5.9AI score0.00028EPSS

Exploits0References1

Cvelist•added 2026/05/27 3:25 p.m.•34 views

CVE-2026-45335 WeGIA: Middleware whitelist bypass → open redirect via InternoControle.nextPage

5.4CVSS0.00028EPSS

Exploits0References1

CVE•added 2026/05/27 3:25 p.m.•6 views

CVE-2026-45335

WeGIA is vulnerable to an Open Redirect in the /WeGIA/controle/control.php endpoint prior to version 3.7.3. The vulnerability arises via the nextPage parameter when combined with metodo=listarTodos and nomeClasse=InternoControle, where the application fails to validate or restrict nextPage. This ...

5.4CVSS5.9AI score0.00028EPSS

Exploits0References1

EUVD•added 2026/05/27 3:25 p.m.•3 views

EUVD-2026-32566

5.4CVSS5.9AI score0.00028EPSS

Exploits0References1

CNNVD•added 2026/05/27 12:0 a.m.•2 views

WeGIA 输入验证错误漏洞

WeGIA is a network manager for welfare institutions developed by Nilson Lazarin as an individual project. Versions of WeGIA prior to 3.7.3 contained a vulnerability related to input validation errors. This vulnerability stemmed from the lack of validation or restrictions on the nextPage parameter...

5.4CVSS5.9AI score0.00028EPSS

Exploits0References2

Positive Technologies•added 2026/05/27 12:0 a.m.•2 views

PT-2026-44043

5.4CVSS5.9AI score0.00028EPSS

Exploits0References2

RedhatCVE•added 2026/04/07 11:1 p.m.•1 views

CVE-2026-35472

WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, an Open Redirect vulnerability was identified in the /WeGIA/controle/control.php endpoint of the WeGIA application, specifically through the nextPage parameter when combined with metodo=listarTodos and nomeClasse=EstoqueControle...

6.1CVSS6AI score0.00014EPSS

Exploits1References1

RedhatCVE•added 2026/04/07 11:1 p.m.•1 views

CVE-2026-35473

6.1CVSS6AI score0.00043EPSS

Exploits1References1

RedhatCVE•added 2026/04/07 11:1 p.m.•0 views

CVE-2026-35396

6.1CVSS6AI score0.00014EPSS

Exploits1References1

NVD•added 2026/04/06 10:16 p.m.•1 views

CVE-2026-35473

6.1CVSS0.00043EPSS

Exploits1References1

NVD•added 2026/04/06 9:16 p.m.•0 views

CVE-2026-35472

6.1CVSS0.00014EPSS

Exploits1References1

NVD•added 2026/04/06 9:16 p.m.•1 views

CVE-2026-35398

6.1CVSS0.00014EPSS

Exploits1References1

CVE•added 2026/04/06 9:12 p.m.•2 views

CVE-2026-35473

WeGIA (Web manager for charitable institutions) prior to version 3.6.9 contained an open redirect vulnerability in the /WeGIA/controle/control.php endpoint. The issue arises from an unvalidated nextPage parameter when the request uses metodo=listarId and nomeClasse=IentradaControle, allowing atta...

6.1CVSS6AI score0.00043EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2026/04/06 9:12 p.m.•2 views

CVE-2026-35473 WeGIA - Open Redirect - IentradaControle - listarId() - Unvalidated $_GET['nextPage']

5.1CVSS6AI score0.00043EPSS

Exploits1References1

Cvelist•added 2026/04/06 9:12 p.m.•12 views

CVE-2026-35473 WeGIA - Open Redirect - IentradaControle - listarId() - Unvalidated $_GET['nextPage']

5.1CVSS0.00043EPSS

Exploits1References1

EUVD•added 2026/04/06 9:12 p.m.•1 views

EUVD-2026-19506