Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / wegia

wegia

179 tracked vulnerabilities.

CVE-2026-23726 MEDIUM

WeGIA < 3.6.2 - Open Redirect via nextPage Parameter

CVE-2026-23725 MEDIUM

WeGIA < 3.6.2 - Stored Cross-Site Scripting in Adopters Information Table

CVE-2026-23724 MEDIUM

WeGIA < 3.6.2 - Stored Cross-Site Scripting in Atendido Selection Dropdown

CVE-2026-23723 HIGH

WeGIA < 3.6.2 - Authenticated SQL Injection via Atendido_ocorrenciaControle id_memorando Parameter

CVE-2026-23722 CRITICAL

WeGIA < 3.6.2 - Unauthenticated Reflected Cross-Site Scripting via id_memorando Parameter

CVE-2025-67501 HIGH

WeGIA < 3.5.5 - SQL Injection via id_categoria Parameter

CVE-2025-67496 MEDIUM

WeGIA < 3.5.5 - Stored Cross-Site Scripting in Employee Selection Dropdown

CVE-2025-62598 MEDIUM

WeGIA < 3.5.1 - Reflected Cross-Site Scripting via editar_info_pessoal.php Action Parameter

CVE-2025-62597 MEDIUM

WeGIA < 3.5.1 - Reflected Cross-Site Scripting via editar_info_pessoal.php sql Parameter

CVE-2025-62361 MEDIUM

WeGIA < 3.5.0 - Open Redirect via control.php nextPage Parameter

CVE-2025-62360 HIGH

WeGIA < 3.5.1 - SQL Injection via id_dependente Parameter

CVE-2025-62359 MEDIUM

WeGIA >=3.4.11 <3.5.0 - Reflected Cross-Site Scripting via id_pet Parameter

CVE-2025-62358 MEDIUM

WeGIA < 3.5.1 - Reflected Cross-Site Scripting via Log Parameter

CVE-2025-62179 HIGH

WeGIA < 3.5.1 - SQL Injection via CPF Parameter in Funcionario Endpoint

CVE-2025-62178 LOW

WeGIA < 3.5.1 - Reflected Cross-Site Scripting via idatendido Parameter

CVE-2025-62177 HIGH

WeGIA < 3.5.1 - SQL Injection via id_funcionario Parameter

CVE-2025-61665 HIGH

WeGIA < 3.5.0 - Unauthenticated Sensitive Information Exposure via get_relatorios_socios.php Endpoint

CVE-2025-61606 MEDIUM

WeGIA < 3.5.0 - Open Redirect via control.php nextPage Parameter

CVE-2025-61605 CRITICAL

WeGIA < 3.5.0 - SQL Injection via id_pet Parameter

CVE-2025-61604 HIGH

WeGIA < 3.5.0 - Cross-Site Request Forgery via Almoxarifado Delete Operation

CVE-2025-61603 CRITICAL

WeGIA < 3.5.0 - SQL Injection via descricao Parameter

CVE-2025-59939 HIGH

WeGIA < 3.5.0 - SQL Injection via control.php id_produto Parameter

CVE-2025-58745 CRITICAL

WeGIA < 3.4.11 - Unauthenticated Arbitrary File Upload via Excel MIME Type Bypass

CVE-2025-58454 HIGH

WeGIA < 3.4.11 - Authenticated SQL Injection via id_memorando Parameter

CVE-2025-58453 HIGH

WeGIA < 3.4.11 - Authenticated SQL Injection via id_anexo Parameter

Previous Page 2 of 8 Next

Products

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy