CVE-2025-57763
WeGIA is a Web manager for charitable institutions. Prior to 3.4.7, there is a Reflected Cross-Site Scripting (XSS) vuln
WeGIA is a Web manager for charitable institutions. Prior to 3.4.7, there is a Reflected Cross-Site Scripting (XSS) vulnerability in the insere_despacho.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts in the cpf sccs.
This vulnerability is fixed in 3.4.7.
MEDIUM · CVSS 6.1
EPSS 0.00064
Schedule remediation
- Public exploit or PoC is available
Sigma rules0
YARA rules0