CNNVD-202507-1925 Information

CNNVD ID

CNNVD-202507-1925

Related CVE

CVE-2025-53821

• CNNVD Published: 2025-07-14

Description (Chinese)

WeGIA是Nilson Lazarin个人开发者的一个福利机构的网络管理器。 WeGIA 3.4.5之前版本存在输入验证错误漏洞，该漏洞源于control.php端点存在开放重定向。

Description (English)

WeGIA is the network manager of a welfare institution of the Nelson Lazarin personal developer. The previous version of WeGIA 3.4.5 had an input authentication error loophole, which stemmed from open redirection at the control.php endpoint.

Hazard Level

High

Vulnerability Type

输入验证错误

Affected Vendor

Live Support

Published

2025-07-14

Last Modified

2026-02-24

References

https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-f5c2-jmm6-v2c5 https://access.redhat.com/security/cve/cve-2025-53821

Patch

https://github.com/LabRedesCefetRJ/WeGIA/releases