logo
Vulnerability feed
CONTRIBUTE

Vulnerability

warn

CVE-2025-23219

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2025-23219

Description:
WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerability was identified in the WeGIA application, specifically in the adicionar_cor.php endpoint. This vulnerability allows attackers to execute arbitrary SQL commands in the database, allowing unauthorized access to sensitive information. During the exploit, it was possible to perform a complete dump of the application's database, highlighting the severity of the flaw. This vulnerability is fixed in 3.2.10.
Last updated date:
02/28/2025
Type:
exploit
Confidence:
HIGH
Date of publishing:
02/28/2025
Reference url to background

https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-h2mg-4c7q-w69v

Vulnerability FeedContributorsAboutBlog

@inTheWild

©2025

Privacy Policy