wegia

179 tracked vulnerabilities.

CVE-2025-23030 MEDIUM
WeGIA < 3.2.6 - Reflected Cross-Site Scripting via CPF Parameter
Jan 14, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-22619 MEDIUM
WeGIA < 3.2.6 - Reflected Cross-Site Scripting via msg_c Parameter
Jan 13, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-22618 MEDIUM
WeGIA < 3.2.6 - Stored Cross-Site Scripting via Cargo Parameter in adicionar_cargo.php
Jan 13, 2025
CVSS 5.4
EPSS 0.01
CVE-2025-22617 MEDIUM
WeGIA < 3.2.7 - Reflected Cross-Site Scripting via socio Parameter
Jan 13, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-22616 MEDIUM
WeGIA < 3.2.6 - Stored Cross-Site Scripting via dependente_parentesco_adicionar.php descricao Parameter
Jan 13, 2025
CVSS 5.4
EPSS 0.01
CVE-2025-22615 MEDIUM
WeGIA < 3.2.6 - Reflected Cross-Site Scripting via CPF Parameter in Cadastro_Atendido.php
Jan 13, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-22614 MEDIUM
WeGIA < 3.2.6 - Stored Cross-Site Scripting via dependente_editarInfoPessoal.php Parameters
Jan 13, 2025
CVSS 5.4
EPSS 0.01
CVE-2025-22613 MEDIUM
WeGIA < 3.2.6 - Stored Cross-Site Scripting via informacao_adicional.php descricao Parameter
Jan 13, 2025
CVSS 5.4
EPSS 0.01
CVE-2025-22600 MEDIUM
WeGIA < 3.2.8 - Reflected Cross-Site Scripting via configuracao_doacao.php avulso Parameter
Jan 10, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-22599 MEDIUM
WeGIA < 3.2.8 - Reflected Cross-Site Scripting via home.php msg_c Parameter
Jan 10, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-22598 HIGH
WeGIA < 3.2.8 - Stored Cross-Site Scripting via cadastrarSocio.php local_recepcao Parameter
Jan 10, 2025
CVSS 8.3
EPSS 0.00
CVE-2025-22597 HIGH
WeGIA < 3.2.8 - Stored Cross-Site Scripting via CobrancaController.php local_recepcao Parameter
Jan 10, 2025
CVSS 8.3
EPSS 0.00
CVE-2025-22596 MEDIUM
WeGIA < 3.2.8 - Reflected Cross-Site Scripting via modulos_visiveis.php msg_c Parameter
Jan 10, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-22143 MEDIUM
WeGIA < 3.2.8 - Reflected Cross-Site Scripting via listar_permissoes.php msg_e Parameter
Jan 08, 2025
CVSS 6.1
EPSS 0.01
CVE-2025-22141 HIGH
WeGIA < 3.2.8 - SQL Injection via cargo Parameter in verificar_recursos_cargo.php Endpoint
Jan 08, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-22140 HIGH
WeGIA < 3.2.8 - SQL Injection via id_dependente Parameter
Jan 08, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-22139 MEDIUM
WeGIA < 3.2.8 - Reflected Cross-Site Scripting via configuracao_geral.php msg_c Parameter
Jan 08, 2025
CVSS 6.1
EPSS 0.01
CVE-2025-22133 CRITICAL
WeGIA < 3.2.8 - Unrestricted Upload of File with Dangerous Type via controla_xlsx.php Endpoint
Jan 07, 2025
CVSS 9.9
EPSS 0.00
CVE-2025-22132 HIGH
WeGIA < 3.2.7 - Stored Cross-Site Scripting via XLSX File Upload
Jan 07, 2025
CVSS 8.3
EPSS 0.00
CVE-2024-57035 CRITICAL
WeGIA v3.2.0 - SQL Injection via nextPage Parameter
Jan 17, 2025
CVSS 9.8
EPSS 0.00
CVE-2024-57033 MEDIUM
WeGIA < 3.2.0 - Cross-Site Scripting via dados_addInfo Parameter
Jan 17, 2025
CVSS 6.1
EPSS 0.00
CVE-2024-57034 CRITICAL
WeGIA < 3.2.0 - SQL Injection via query_geracao_auto.php Query Parameter
Jan 17, 2025
CVSS 9.8
EPSS 0.00
CVE-2024-57032 CRITICAL
WeGIA < 3.2.0 - Privilege Escalation
Jan 17, 2025
CVSS 9.8
EPSS 0.01
CVE-2024-57031 CRITICAL
WeGIA < 3.2.0 - SQL Injection via id_funcionario Parameter
Jan 17, 2025
CVSS 9.8
EPSS 0.00
CVE-2024-57030 HIGH
Wegia < 3.2.0 - Cross-Site Scripting via id Parameter
Jan 17, 2025
CVSS 8.1
EPSS 0.01
Products
wegia 179
Quick Filters
Critical CVEs With Exploits In CISA KEV