wegia

179 tracked vulnerabilities.

CVE-2025-26611 CRITICAL
WeGia < 3.2.13 - SQL Injection via remover_produto.php Endpoint
Feb 18, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-26610 CRITICAL
WeGIA < 3.2.13 - Authenticated SQL Injection via restaurar_produto_desocultar.php Endpoint
Feb 18, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-26609 CRITICAL
WeGia < 3.2.13 - SQL Injection via familiar_docfamiliar.php Endpoint
Feb 18, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-26608 CRITICAL
WeGIA < 3.2.13 - SQL Injection via dependente_docdependente.php Endpoint
Feb 18, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-26607 CRITICAL
WeGia < 3.2.13 - SQL Injection via documento_excluir.php Endpoint
Feb 18, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-26606 CRITICAL
WeGia < 3.2.13 - SQL Injection via informacao_adicional.php Endpoint
Feb 18, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-26605 HIGH
WeGia < 3.2.13 - Authenticated SQL Injection via deletar_cargo.php Endpoint
Feb 18, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-24958 HIGH
WeGIA < 3.2.12 - Authenticated SQL Injection via salvar_tag.php Endpoint
Feb 03, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-24957 CRITICAL
WeGia < 3.2.12 - Authenticated SQL Injection via get_detalhes_socio.php Endpoint
Feb 03, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-24906 CRITICAL
WeGia < 3.2.12 - Authenticated SQL Injection via get_detalhes_cobranca.php Endpoint
Feb 03, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-24905 CRITICAL
WeGIA < 3.2.12 - Authenticated SQL Injection via get_codigobarras_cobranca.php Endpoint
Feb 03, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-24902 HIGH
WeGIA < 3.2.12 - Authenticated SQL Injection via salvar_cargo.php Endpoint
Feb 03, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-24901 HIGH
WeGia < 3.2.12 - Authenticated SQL Injection via deletar_permissao.php Endpoint
Feb 03, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-24020 MEDIUM
WeGIA <= 3.2.10 - Open Redirect via control.php nextPage Parameter
Jan 21, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-23220 CRITICAL
WeGIA < 3.2.10 - SQL Injection via adicionar_raca.php Endpoint
Jan 20, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-23219 CRITICAL
WeGIA < 3.2.10 - SQL Injection via adicionar_cor.php Endpoint
Jan 20, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-23218 CRITICAL
WeGIA < 3.2.10 - SQL Injection via adicionar_especie.php Endpoint
Jan 20, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-23038 MEDIUM
WeGIA < 3.2.6 - Stored Cross-Site Scripting via remuneracao.php descricao Parameter
Jan 14, 2025
CVSS 5.4
EPSS 0.01
CVE-2025-23037 MEDIUM
WeGIA < 3.2.6 - Stored Cross-Site Scripting via control.php cargo Parameter
Jan 14, 2025
CVSS 5.4
EPSS 0.01
CVE-2025-23036 MEDIUM
WeGIA < 3.2.7 - Reflected Cross-Site Scripting via msg_e Parameter
Jan 14, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-23035 MEDIUM
WeGIA < 3.2.6 - Stored Cross-Site Scripting via tipo Parameter in adicionar_tipo_quadro_horario.php
Jan 14, 2025
CVSS 5.4
EPSS 0.01
CVE-2025-23034 MEDIUM
WeGIA < 3.2.6 - Reflected Cross-Site Scripting via msg_e Parameter
Jan 14, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-23033 MEDIUM
WeGIA < 3.2.6 - Stored Cross-Site Scripting via adicionar_situacao.php situacao Parameter
Jan 14, 2025
CVSS 5.4
EPSS 0.01
CVE-2025-23032 MEDIUM
WeGIA < 3.2.6 - Stored Cross-Site Scripting via escala Parameter in adicionar_escala.php
Jan 14, 2025
CVSS 5.4
EPSS 0.01
CVE-2025-23031 MEDIUM
WeGIA < 3.2.6 - Stored Cross-Site Scripting via adicionar_alergia.php nome Parameter
Jan 14, 2025
CVSS 5.4
EPSS 0.01
Products
wegia 179
Quick Filters
Critical CVEs With Exploits In CISA KEV