3 matches found
EUVD-2025-3986
Malicious code in bioql PyPI...
CVE-2025-24902
CVE-2025-24902 affects the WeGIA Web Manager for charitable institutions. A SQL Injection flaw exists in the salvar_cargo.php endpoint (likely involving the id_cargo parameter) that could allow an authorized attacker to execute arbitrary SQL, exposing or deleting sensitive data. The issue is addr...
CVE-2025-24905 SQL Injection endpoint 'get_codigobarras_cobranca.php' parameter 'codigo' in WeGIA
WeGIA is a Web Manager for Charitable Institutions. A SQL Injection vulnerability was discovered in the WeGIA application, getcodigobarrascobranca.php endpoint. This vulnerability could allow an authorized attacker to execute arbitrary SQL queries, allowing access to or deletion of sensitive...