CVE-2025-22141
WeGIA, a web manager for charitable institutions, contains a SQL injection in the /dao/verificar_recursos_cargo.php endpoint via the cargo parameter. This allows arbitrary SQL execution, with potential compromise of database confidentiality, integrity, and availability as described in CVE-2025-22...