Vulnerabilities > Wegia > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-01-20 | CVE-2025-23220 | Unspecified vulnerability in Wegia WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. | 9.8 |
| 2025-01-17 | CVE-2024-57035 | SQL Injection vulnerability in Wegia 3.2.0 WeGIA v3.2.0 is vulnerable to SQL Injection viathe nextPage parameter in /controle/control.php. | 9.8 |
| 2025-01-17 | CVE-2024-57031 | SQL Injection vulnerability in Wegia WeGIA < 3.2.0 is vulnerable to SQL Injection in /funcionario/remuneracao.php via the id_funcionario parameter. | 9.8 |
| 2025-01-17 | CVE-2024-57032 | Incorrect Authorization vulnerability in Wegia WeGIA < 3.2.0 is vulnerable to Incorrect Access Control in controle/control.php. | 9.8 |
| 2025-01-17 | CVE-2024-57034 | SQL Injection vulnerability in Wegia WeGIA < 3.2.0 is vulnerable to SQL Injection in query_geracao_auto.php via the query parameter. | 9.8 |
| 2025-01-07 | CVE-2025-22133 | Unspecified vulnerability in Wegia WeGIA is a web manager for charitable institutions. | 9.9 |