wegia · threatengine.sh

CVE-2026-40283

< 3.6.10

WeGIA is a web manager for charitable institutions. In versions prior to 3.6.10, a Stored Cross-Site Scripting (XSS) vulnerability

6.8MEDIUM

CVE-2026-35475

< 3.6.9

WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, the redirect parameter is taken directly from $_GET with no UR

6.1MEDIUM

CVE-2026-35474

< 3.6.9

WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, open redirect has been found in WeGIA webapp. The redirect par

6.1MEDIUM

CVE-2026-35473

< 3.6.9

WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, an Open Redirect vulnerability was identified in the /WeGIA/co

6.1MEDIUM

CVE-2026-35472

< 3.6.9

WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, an Open Redirect vulnerability was identified in the /WeGIA/co

6.1MEDIUM

CVE-2026-35399

< 3.6.9

WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, a stored XSS vulnerability allows an attacker to inject malici

6.1MEDIUM

CVE-2026-35398

< 3.6.9

WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, an Open Redirect vulnerability was identified in the /WeGIA/co

6.1MEDIUM

CVE-2026-35396

< 3.6.9

WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, an Open Redirect vulnerability was identified in the /WeGIA/co

6.1MEDIUM

CVE-2026-35395

< 3.6.9

WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, WeGIA (Web gerenciador para instituições assistenciais) cont

8.8HIGH

CVE-2026-33991

< 3.6.7

WeGIA is a web manager for charitable institutions. Prior to version 3.6.7, the file html/socio/sistema/deletar_tag.php uses `ex

8.8HIGH

CVE-2026-33136

< 3.6.7

WeGIA is a web manager for charitable institutions. Versions 3.6.6 and below have a Reflected Cross-Site Scripting (XSS) vulnerabi

9.3CRITICAL

CVE-2026-33135

< 3.6.7

WeGIA is a web manager for charitable institutions. Versions 3.6.6 and below have a Reflected Cross-Site Scripting (XSS) vulnerabi

9.3CRITICAL

CVE-2026-33134

< 3.6.6

WeGIA is a web manager for charitable institutions. Versions 3.6.5 and below contain an authenticated SQL Injection vulnerability

9.3CRITICAL

CVE-2026-33133

all versions

WeGIA is a web manager for charitable institutions. In versions 3.6.5 and 3.6.6, the loadBackupDB() function imports SQL files fro

7.2HIGH

CVE-2026-31896

< 3.6.6

WeGIA is a web manager for charitable institutions. Prior to version 3.6.6, a critical SQL injection vulnerability exists in the W

9.8CRITICAL

CVE-2026-31895

< 3.6.6

WeGIA is a web manager for charitable institutions. Prior to version 3.6.6, WeGIA (Web gerenciador para instituições assistencia

8.8HIGH

CVE-2026-31894

all versions

WeGIA is a web manager for charitable institutions. In 3.6.5, The patched loadBackupDB() extracts tar.gz archives to a temporary d

7.5HIGH

CVE-2026-28411

< 3.6.5

WeGIA is a web manager for charitable institutions. Prior to version 3.6.5, an unsafe use of the extract() function on the `$_RE

9.8CRITICAL

CVE-2026-28409

< 3.6.5

WeGIA is a web manager for charitable institutions. Prior to version 3.6.5, a critical Remote Code Execution (RCE) vulnerability e

10.0CRITICAL

CVE-2026-28408

< 3.6.5

WeGIA is a web manager for charitable institutions. Prior to version 3.6.5, the script in adicionar_tipo_docs_atendido.php does no

9.8CRITICAL

CVE-2026-23731

< 3.6.2

WeGIA is a web manager for charitable institutions. Prior to 3.6.2, The web application is vulnerable to clickjacking attacks. The

4.3MEDIUM

CVE-2026-23730

< 3.6.2

WeGIA is a web manager for charitable institutions. Prior to 3.6.2, an Open Redirect vulnerability was identified in the /WeGIA/co

6.1MEDIUM

CVE-2026-23729

< 3.6.2

WeGIA is a web manager for charitable institutions. Prior to 3.6.2, an Open Redirect vulnerability was identified in the /WeGIA/co

6.1MEDIUM

CVE-2026-23728

< 3.6.2

WeGIA is a web manager for charitable institutions. Prior to 3.6.2, an Open Redirect vulnerability was identified in the /WeGIA/co

6.1MEDIUM

CVE-2026-23727

< 3.6.2

WeGIA is a web manager for charitable institutions. Prior to 3.6.2, an Open Redirect vulnerability was identified in the /WeGIA/co

6.1MEDIUM

CVE-2026-23726

< 3.6.2

WeGIA is a web manager for charitable institutions. Prior to 3.6.2, An Open Redirect vulnerability was identified in the /WeGIA/co

6.1MEDIUM

CVE-2026-23725

< 3.6.2

WeGIA is a web manager for charitable institutions. Prior to 3.6.2, a Stored Cross-Site Scripting (XSS) vulnerability was identifi

5.4MEDIUM

CVE-2026-23724

< 3.6.2

WeGIA is a web manager for charitable institutions. Prior to 3.6.2, a Stored Cross-Site Scripting (XSS) vulnerability was identifi

4.3MEDIUM

CVE-2026-23723

< 3.6.2

WeGIA is a web manager for charitable institutions. Prior to 3.6.2, an authenticated SQL Injection vulnerability was identified in

7.2HIGH

CVE-2026-23722

< 3.6.2

WeGIA is a Web Manager for Charitable Institutions. Prior to 3.6.2, a Reflected Cross-Site Scripting (XSS) vulnerability was disco

9.1CRITICAL

CVE-2025-67501

< 3.5.5

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Versions 3.5.4 and below contain a

8.8HIGH

CVE-2025-67496

< 3.5.5

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Versions 3.5.4 and below contain a

4.3MEDIUM

CVE-2025-62598

< 3.5.1

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Prior to version 3.5.1, a reflecte

6.1MEDIUM

CVE-2025-62597

< 3.5.1

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Prior to version 3.5.1, a reflecte

6.1MEDIUM

CVE-2025-62361

< 3.5.0

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Prior to 3.5.0, an Open Redirect v

6.1MEDIUM

CVE-2025-62360

< 3.5.1

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users.Prior to 3.5.1, a SQL Injection vul

8.8HIGH

CVE-2025-62359

>= 3.4.11 and < 3.5.0

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Prior to 3.5.0, a Reflected Cross-

6.1MEDIUM

CVE-2025-62358

< 3.5.1

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Prior to 3.5.1, the log parameter

5.4MEDIUM

CVE-2025-62179

< 3.5.1

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Prior to 3.5.1, a SQL Injection vu

8.8HIGH

CVE-2025-62178

< 3.5.1

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Prior to 3.5.1, a Reflected Cross-

3.5LOW

CVE-2025-62177

< 3.5.1

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Prior to 3.5.1, a SQL Injection vu

8.8HIGH

CVE-2025-61665

< 3.5.0

WeGIA is an open source web manager with a focus on charitable institutions. Versions 3.4.12 and below contain a Broken Access Con

7.5HIGH

CVE-2025-61606

< 3.5.0

WeGIA is an open source web manager with a focus on charitable institutions. Versions 3.4.12 and below contain an Open Redirect vu

6.1MEDIUM

CVE-2025-61605

< 3.5.0

WeGIA is an open source web manager with a focus on charitable institutions. Versions 3.4.12 and below contain an SQL Injection vu

9.8CRITICAL

CVE-2025-61604

< 3.5.0

WeGIA is an open source web manager with a focus on charitable institutions. Versions 3.4.12 and below contain a Cross-Site Reques

7.1HIGH

CVE-2025-61603

< 3.5.0

WeGIA is a Web manager for charitable institutions. Versions 3.4.12 and below include an SQL Injection vulnerability which was ide

9.8CRITICAL

CVE-2025-59939

< 3.5.0

WeGIA is a Web manager for charitable institutions. Prior to version 3.5.0, WeGIA is vulnerable to SQL Injection attacks in the co

8.8HIGH

CVE-2025-58745

< 3.4.11

WeGIA is a Web manager for charitable institutions. The fix for CVE-2025-22133 was not enough to remediate the arbitrary file uplo

9.9CRITICAL

CVE-2025-58454

< 3.4.11

WeGIA is a Web manager for charitable institutions. A SQL Injection vulnerability was identified in WeGIA versions 3.4.10 and prio

8.2HIGH

CVE-2025-58453

< 3.4.11

WeGIA is a Web manager for charitable institutions. A SQL Injection vulnerability was identified in WeGIA versions 3.4.10 and prio

8.2HIGH

CVE-2025-58452

< 3.4.11

WeGIA is a Web manager for charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the lis

6.1MEDIUM

CVE-2025-58159

< 3.4.11

WeGIA is a Web manager for charitable institutions. Prior to version 3.4.11, a remote code execution vulnerability was identified,

9.9CRITICAL

CVE-2025-57765

< 3.4.7

WeGIA is a Web manager for charitable institutions. Prior to 3.4.7, a Reflected Cross-Site Scripting (XSS) vulnerability was ident

6.5MEDIUM

CVE-2025-57764

< 3.4.7

WeGIA is a Web manager for charitable institutions. Prior to 3.4.7, a Reflected Cross-Site Scripting (XSS) vulnerability was ident

6.5MEDIUM

CVE-2025-57763

< 3.4.7

WeGIA is a Web manager for charitable institutions. Prior to 3.4.7, there is a Reflected Cross-Site Scripting (XSS) vulnerability

6.1MEDIUM

CVE-2025-57762

< 3.4.7

WeGIA is a Web manager for charitable institutions. Prior to 3.4.7, there is a Stored Cross-Site Scripting (XSS) vulnerability in

6.1MEDIUM

CVE-2025-57761

< 3.4.10

WeGIA is a Web manager for charitable institutions. Prior to 3.4.10, there is a SQL Injection vulnerability in the /html/funcionar

8.8HIGH

CVE-2025-55171

< 3.4.8

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. Prior to version 3.4.8, t

7.5HIGH

CVE-2025-55170

< 3.4.8

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. Prior to version 3.4.8, a

6.5MEDIUM

CVE-2025-55169

< 3.4.8

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. Prior to version 3.4.8, a

6.5MEDIUM

CVE-2025-55168

< 3.4.8

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. Prior to version 3.4.8, a

9.8CRITICAL

CVE-2025-55167

< 3.4.8

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. Prior to version 3.4.8, a

9.8CRITICAL

CVE-2025-54079

< 3.4.6

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerabi

8.8HIGH

CVE-2025-54078

< 3.4.6

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Sc

6.5MEDIUM

CVE-2025-54077

< 3.4.6

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Sc

6.5MEDIUM

CVE-2025-54076

< 3.4.6

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Sc

6.5MEDIUM

CVE-2025-54062

< 3.4.6

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerabi

8.8HIGH

CVE-2025-54061

< 3.4.6

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerabi

8.8HIGH

CVE-2025-54060

< 3.4.6

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerabi

8.8HIGH

CVE-2025-54058

< 3.4.6

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerabi

8.8HIGH

CVE-2025-53946

< 3.4.5

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerabi

8.8HIGH

CVE-2025-53938

< 3.4.5

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. An Authentication Bypass

7.5HIGH

CVE-2025-53937

< 3.4.5

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerabi

9.8CRITICAL

CVE-2025-53936

< 3.4.5

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Sc

6.1MEDIUM

CVE-2025-53935

< 3.4.5

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Sc

6.1MEDIUM

CVE-2025-53934

< 3.4.5

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scrip

5.4MEDIUM

CVE-2025-53933

< 3.4.5

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scrip

5.4MEDIUM

CVE-2025-53932

< 3.4.5

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Sc

6.1MEDIUM

CVE-2025-53931

< 3.4.5

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scrip

5.4MEDIUM

CVE-2025-53930

< 3.4.5

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scrip

5.4MEDIUM

CVE-2025-53929

< 3.4.5

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scrip

5.4MEDIUM

CVE-2025-53824

< 3.4.4

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Sc

5.4MEDIUM

CVE-2025-53823

< 3.4.5

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. Versions prior to 3.4.5 h

8.8HIGH

CVE-2025-53822

< 3.4.5

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Sc

6.5MEDIUM

CVE-2025-53821

< 3.4.5

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. An Open Redirect vulnerab

4.7MEDIUM

CVE-2025-53820

< 3.4.5

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Sc

6.5MEDIUM

CVE-2025-53531

< 3.3.0

WeGIA is a web manager for charitable institutions. The Wegia server has a vulnerability that allows excessively long HTTP GET req

7.5HIGH

CVE-2025-53530

< 3.3.0

WeGIA is a web manager for charitable institutions. The Wegia server has a vulnerability that allows excessively long HTTP GET req

7.5HIGH

CVE-2025-53529

< 3.4.3

WeGIA is a web manager for charitable institutions. An SQL Injection vulnerability was identified in the /html/funcionario/profile

9.8CRITICAL

CVE-2025-53527

all versions

WeGIA is a web manager for charitable institutions. A Time-Based Blind SQL Injection vulnerability was discovered in the almox par

9.8CRITICAL

CVE-2025-53526

< 3.4.3

WeGIA is a web manager for charitable institutions. An XSS Injection vulnerability was identified in novo_memorando.php. After the

6.1MEDIUM

CVE-2025-53525

< 3.4.3

WeGIA is a web manager for charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the pro

6.1MEDIUM

CVE-2025-53377

< 3.4.3

WeGIA is a web manager for charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the cad

6.1MEDIUM

CVE-2025-53091

< 3.4.0

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Time-Based Blind SQL In

9.8CRITICAL

CVE-2025-6699

all versions

A vulnerability classified as problematic has been found in LabRedesCefetRJ WeGIA 3.4.0. This affects an unknown part of the file

3.5LOW

CVE-2025-6698

all versions

A vulnerability was found in LabRedesCefetRJ WeGIA 3.4.0. It has been rated as problematic. Affected by this issue is some unknown

3.5LOW

CVE-2025-6697

all versions

A vulnerability was found in LabRedesCefetRJ WeGIA 3.4.0. It has been declared as problematic. Affected by this vulnerability is a

3.5LOW

CVE-2025-6696

all versions

A vulnerability was found in LabRedesCefetRJ WeGIA 3.4.0. It has been classified as problematic. Affected is an unknown function o

3.5LOW

CVE-2025-6695

all versions

A vulnerability was found in LabRedesCefetRJ WeGIA 3.4.0 and classified as problematic. This issue affects some unknown processing

3.5LOW

CVE-2025-6694

all versions

A vulnerability has been found in LabRedesCefetRJ WeGIA 3.4.0 and classified as problematic. This vulnerability affects unknown co

3.5LOW

CVE-2025-52474

< 3.4.2

WeGIA is a web manager for charitable institutions. Prior to version 3.4.2, a SQL Injection vulnerability was identified in the id

9.8CRITICAL

CVE-2025-50201

< 3.4.2

WeGIA is a web manager for charitable institutions. Prior to version 3.4.2, an OS Command Injection vulnerability was identified i

9.8CRITICAL

CVE-2025-46828

< 3.3.1

WeGIA is a web manager for charitable institutions. An unauthenticated SQL Injection vulnerability was identified in versions up

9.8CRITICAL

CVE-2025-30367

< 3.2.6

WeGIA is a Web manager for charitable institutions. A SQL Injection vulnerability was identified in versions prior to 3.2.6 in the

9.8CRITICAL

CVE-2025-30366

< 3.2.8

WeGIA is a Web manager for charitable institutions. Versions prior to 3.2.8 are vulnerable to stored cross-site scripting. This vu

5.4MEDIUM

CVE-2025-30365

< 3.2.8

WeGIA is a Web manager for charitable institutions. A SQL Injection vulnerability was identified in versions prior to 3.2.8 in the

9.8CRITICAL

CVE-2025-30364

< 3.2.8

WeGIA is a Web manager for charitable institutions. A SQL Injection vulnerability was identified in versions prior to 3.2.8 in the

9.8CRITICAL

CVE-2025-30363

< 3.2.6

WeGIA is a Web manager for charitable institutions. A stored Cross-Site Scripting (XSS) vulnerability was identified in versions p

5.4MEDIUM

CVE-2025-30362

< 3.2.8

WeGIA is a Web manager for charitable institutions. A stored Cross-Site Scripting (XSS) vulnerability was identified in versions p

5.4MEDIUM

CVE-2025-30361

< 3.2.6

WeGIA is a Web manager for charitable institutions. A security vulnerability was identified in versions prior to 3.2.6, where it i

9.8CRITICAL

CVE-2025-29782

< 3.2.17

WeGIA is Web manager for charitable institutions A Stored Cross-Site Scripting (XSS) vulnerability was identified in the `adiciona

5.4MEDIUM

CVE-2025-27499

< 3.2.10

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A Stored Cross-Site Scripting (XSS

6.1MEDIUM

CVE-2025-27420

< 3.2.16

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A Stored Cross-Site Scripting (XSS

5.4MEDIUM

CVE-2025-27419

< 3.2.16

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A Denial of Service (DoS) vulnerab

7.5HIGH

CVE-2025-27418

< 3.2.16

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A Stored Cross-Site Scripting (XSS

5.4MEDIUM

CVE-2025-27417

< 3.2.16

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A Stored Cross-Site Scripting (XSS

6.1MEDIUM

CVE-2025-27140

< 3.2.15

WeGIA is a Web manager for charitable institutions. An OS Command Injection vulnerability was discovered in versions prior to 3.2.

9.8CRITICAL

CVE-2025-27133

< 3.2.15

WeGIA is a Web manager for charitable institutions. A SQL Injection vulnerability was discovered in the WeGIA application prior to

8.8HIGH

CVE-2025-27096

< 3.2.14

WeGIA is a Web Manager for Institutions with a focus on Portuguese language. A SQL Injection vulnerability was discovered in the W

9.8CRITICAL

CVE-2025-26617

< 3.2.14

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A SQL Injection vulnerability was

9.8CRITICAL

CVE-2025-26616

< 3.2.14

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A Path Traversal vulnerability was

7.5HIGH

CVE-2025-26615

< 3.2.14

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A Path Traversal vulnerability was

10.0CRITICAL

CVE-2025-26614

< 3.2.14

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A SQL Injection vulnerability was

8.8HIGH

CVE-2025-26613

< 3.2.14

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. An OS Command Injection vulnerabil

9.8CRITICAL

CVE-2025-26612

< 3.2.13

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A SQL Injection vulnerability was

9.8CRITICAL

CVE-2025-26611

< 3.2.13

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A SQL Injection vulnerability was

9.8CRITICAL

CVE-2025-26610

< 3.2.13

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A SQL Injection vulnerability was

9.8CRITICAL

CVE-2025-26609

< 3.2.13

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A SQL Injection vulnerability was

9.8CRITICAL

CVE-2025-26608

< 3.2.13

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A SQL Injection vulnerability was

9.8CRITICAL

CVE-2025-26607

< 3.2.13

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A SQL Injection vulnerability was

9.8CRITICAL

CVE-2025-26606

< 3.2.13

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A SQL Injection vulnerability was

9.8CRITICAL

CVE-2025-26605

< 3.2.13

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A SQL Injection vulnerability was

8.8HIGH

CVE-2025-24958

< 3.2.12

WeGIA is a Web Manager for Charitable Institutions. A SQL Injection vulnerability was discovered in the WeGIA application, `salvar

8.8HIGH

CVE-2025-24957

< 3.2.12

WeGIA is a Web Manager for Charitable Institutions. A SQL Injection vulnerability was discovered in the WeGIA application, `get_de

9.8CRITICAL

CVE-2025-24906

< 3.2.12

WeGIA is a Web Manager for Charitable Institutions. A SQL Injection vulnerability was discovered in the WeGIA application, `get_de

9.8CRITICAL

CVE-2025-24905

< 3.2.12

WeGIA is a Web Manager for Charitable Institutions. A SQL Injection vulnerability was discovered in the WeGIA application, `get_co

9.8CRITICAL

CVE-2025-24902

< 3.2.12

WeGIA is a Web Manager for Charitable Institutions. A SQL Injection vulnerability was discovered in the WeGIA application, `salvar

8.8HIGH

CVE-2025-24901

< 3.2.12

WeGIA is a Web Manager for Charitable Institutions. A SQL Injection vulnerability was discovered in the WeGIA application, `deleta

8.8HIGH

CVE-2025-24020

< 3.2.11

WeGIA is a Web manager for charitable institutions. An Open Redirect vulnerability was identified in the control.php endpoint of

6.1MEDIUM

CVE-2025-23220

< 3.2.10

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerabi

9.8CRITICAL

CVE-2025-23219

< 3.2.10

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerabi

9.8CRITICAL

CVE-2025-23218

< 3.2.10

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerabi

9.8CRITICAL

CVE-2024-57035

all versions

WeGIA v3.2.0 is vulnerable to SQL Injection viathe nextPage parameter in /controle/control.php.

9.8CRITICAL

CVE-2024-57033

< 3.2.0

WeGIA < 3.2.0 is vulnerable to Cross Site Scripting (XSS) via the dados_addInfo parameter of documentos_funcionario.php.

6.1MEDIUM

CVE-2024-57034

< 3.2.0

WeGIA < 3.2.0 is vulnerable to SQL Injection in query_geracao_auto.php via the query parameter.

9.8CRITICAL

CVE-2024-57032

< 3.2.0

WeGIA < 3.2.0 is vulnerable to Incorrect Access Control in controle/control.php. The application does not validate the value of th

9.8CRITICAL

CVE-2024-57031

< 3.2.0

WeGIA < 3.2.0 is vulnerable to SQL Injection in /funcionario/remuneracao.php via the id_funcionario parameter.

9.8CRITICAL

CVE-2024-57030

< 3.2.0

Wegia < 3.2.0 is vulnerable to Cross Site Scripting (XSS) in /geral/documentos_funcionario.php via the id parameter.

8.1HIGH

CVE-2025-23038

< 3.2.6

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scrip

5.4MEDIUM

CVE-2025-23037

< 3.2.6

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scrip

5.4MEDIUM

CVE-2025-23036

< 3.2.7

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Sc

5.4MEDIUM

CVE-2025-23035

< 3.2.6

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scrip

5.4MEDIUM

CVE-2025-23034

< 3.2.6

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Sc

6.1MEDIUM

CVE-2025-23033

< 3.2.6

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scrip

5.4MEDIUM

CVE-2025-23032

< 3.2.6

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scrip

5.4MEDIUM

CVE-2025-23031

< 3.2.6

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scrip

5.4MEDIUM

CVE-2025-23030

< 3.2.6

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Sc

6.1MEDIUM

CVE-2025-22619

< 3.2.6

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Sc

6.1MEDIUM

CVE-2025-22618

< 3.2.6

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scrip

5.4MEDIUM

CVE-2025-22617

< 3.2.7

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Sc

6.1MEDIUM

CVE-2025-22616

< 3.2.6

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scrip

5.4MEDIUM

CVE-2025-22615

< 3.2.6

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Sc

6.1MEDIUM

CVE-2025-22614

< 3.2.6

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scrip

5.4MEDIUM

CVE-2025-22613

< 3.2.6

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scrip

5.4MEDIUM

CVE-2025-22600

< 3.2.8

WeGIA is a web manager for charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the con

6.5MEDIUM

CVE-2025-22599

< 3.2.8

WeGIA is a web manager for charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the hom

6.5MEDIUM

CVE-2025-22598

< 3.2.8

WeGIA is a web manager for charitable institutions. A Stored Cross-Site Scripting (XSS) vulnerability was identified in the cadast

8.3HIGH

CVE-2025-22597

< 3.2.8

WeGIA is a web manager for charitable institutions. A Stored Cross-Site Scripting (XSS) vulnerability was identified in the Cobran

8.3HIGH

CVE-2025-22596

< 3.2.8

WeGIA is a web manager for charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the mod

6.5MEDIUM

CVE-2025-22143

< 3.2.8

WeGIA is a web manager for charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the lis

6.1MEDIUM

CVE-2025-22141

< 3.2.8

WeGIA is a web manager for charitable institutions. A SQL Injection vulnerability was identified in the /dao/verificar_recursos_ca

8.8HIGH

CVE-2025-22140

< 3.2.8

WeGIA is a web manager for charitable institutions. A SQL Injection vulnerability was identified in the /html/funcionario/dependen

8.8HIGH

CVE-2025-22139

< 3.2.8

WeGIA is a web manager for charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the con

6.1MEDIUM

CVE-2025-22133

< 3.2.8

WeGIA is a web manager for charitable institutions. Prior to 3.2.8, a critical vulnerability was identified in the /WeGIA/html/soc

9.9CRITICAL

CVE-2025-22132

< 3.2.7

WeGIA is a web manager for charitable institutions. A Cross-Site Scripting (XSS) vulnerability was identified in the file upload f

8.3HIGH

CVE-2024-53473

all versions

WeGIA 3.2.0 before 3998672 does not verify permission to change a password.

7.5HIGH

CVE-2024-53472

all versions

WeGIA v3.2.0 was discovered to contain a Cross-Site Request Forgery (CSRF).

8.8HIGH

CVE-2024-53471

all versions

Multiple stored cross-site scripting (XSS) vulnerabilities in the component /configuracao/meio_pagamento.php of WeGIA v3.2.0 allow

6.1MEDIUM

CVE-2024-53470

all versions

Multiple stored cross-site scripting (XSS) vulnerabilities in the component /configuracao/gateway_pagamento.php of WeGIA v3.2.0 al

6.1MEDIUM