wegia

179 tracked vulnerabilities.

CVE-2025-53934 MEDIUM
WeGIA < 3.4.5 - Stored Cross-Site Scripting via descricao_emergencia Parameter
Jul 16, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-53933 MEDIUM
WeGIA < 3.4.5 - Stored Cross-Site Scripting via adicionar_enfermidade.php Nome Parameter
Jul 16, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-53932 MEDIUM
WeGIA < 3.4.5 - Reflected Cross-Site Scripting via cpf Parameter
Jul 16, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-53931 MEDIUM
WeGIA < 3.4.5 - Stored Cross-Site Scripting via raca Parameter in adicionar_raca.php
Jul 16, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-53930 MEDIUM
WeGIA < 3.4.5 - Stored Cross-Site Scripting via especie Parameter in adicionar_especie.php
Jul 16, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-53929 MEDIUM
WeGIA < 3.4.5 - Stored Cross-Site Scripting via adicionar_cor.php cor Parameter
Jul 16, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-53824 MEDIUM
WeGIA < 3.4.4 - Reflected Cross-Site Scripting via editar_permissoes.php msg_c Parameter
Jul 14, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-53823 HIGH
WeGIA < 3.4.5 - SQL Injection via id_socio Parameter
Jul 14, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-53822 MEDIUM
WeGIA < 3.4.5 - Reflected Cross-Site Scripting via relatorio_geracao.php tipo_relatorio Parameter
Jul 14, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-53821 MEDIUM
WeGIA < 3.4.5 - Open Redirect via control.php nextPage Parameter
Jul 14, 2025
CVSS 4.7
EPSS 0.00
CVE-2025-53820 MEDIUM
WeGIA < 3.4.5 - Reflected Cross-Site Scripting via 'erro' Parameter in index.php
Jul 14, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-53531 HIGH
WeGIA < 3.3.0 - Denial of Service via Excessively Long HTTP GET Request
Jul 07, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-53530 HIGH
WeGIA < 3.3.0 - Denial of Service via Excessively Long HTTP GET Request
Jul 07, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-53529 CRITICAL
WeGIA < 3.4.3 - Unauthenticated SQL Injection via id_funcionario Parameter
Jul 07, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-53527 CRITICAL
WeGIA - Time-Based Blind SQL Injection via almox Parameter
Jul 07, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-53526 MEDIUM
WeGIA < 3.4.3 - Stored Cross-Site Scripting via novo_memorando.php
Jul 07, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-53525 MEDIUM
WeGIA < 3.4.3 - Reflected Cross-Site Scripting via id_dependente Parameter
Jul 07, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-53377 MEDIUM
WeGIA < 3.4.3 - Reflected Cross-Site Scripting via id_funcionario Parameter
Jul 07, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-53091 CRITICAL
WeGIA < 3.4.0 - Unauthenticated Time-Based Blind SQL Injection via almox Parameter
Jun 27, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-6699 LOW
LabRedesCefetRJ WeGIA 3.4.0 - Cross-Site Scripting via Nome/Sobrenome Parameter
Jun 26, 2025
CVSS 3.5
EPSS 0.00
CVE-2025-6698 LOW
WeGIA 3.4.0 - Cross-Site Scripting via Insira o novo tipo Parameter
Jun 26, 2025
CVSS 3.5
EPSS 0.00
CVE-2025-6697 LOW
WeGIA 3.4.0 - Cross-Site Scripting via Adicionar tipo Insira o novo tipo Parameter
Jun 26, 2025
CVSS 3.5
EPSS 0.00
CVE-2025-6696 LOW
LabRedesCefetRJ WeGIA 3.4.0 - Cross-Site Scripting via Cadastro de Atendio Nome/Sobrenome Parameter
Jun 26, 2025
CVSS 3.5
EPSS 0.00
CVE-2025-6695 LOW
LabRedesCefetRJ WeGIA 3.4.0 - Cross-Site Scripting via Additional Categoria Input
Jun 26, 2025
CVSS 3.5
EPSS 0.00
CVE-2025-6694 LOW
LabRedesCefetRJ WeGIA 3.4.0 - Cross-Site Scripting via Adicionar Unidade Component
Jun 26, 2025
CVSS 3.5
EPSS 0.00
Products
wegia 179
Quick Filters
Critical CVEs With Exploits In CISA KEV