CVE-2025-22140

by Fred · 08/01/2025

WeGIA is a web manager for charitable institutions. A SQL Injection vulnerability was identified in the /html/funcionario/dependente_listar_um.php endpoint, specifically in the id_dependente parameter. This vulnerability allows attackers to execute arbitrary SQL commands, compromising the confidentiality, integrity, and availability of the database. This vulnerability is fixed in 3.2.8.

More information : https://github.com/nilsonLazarin/WeGIA/security/advisories/GHSA-mrhp-wfp2-59h5

CVE-2025-22140

Similar

Recent Posts

Categories

CVE-2025-22140

Share this:

Similar

Recent Posts

Categories

Tags