CNNVD-202507-2250 Information

CNNVD ID

CNNVD-202507-2250

Related CVE

CVE-2025-53938

• CNNVD Published: 2025-07-16

Description (Chinese)

WeGIA是Nilson Lazarin个人开发者的一个福利机构的网络管理器。 WeGIA 3.4.5之前版本存在访问控制错误漏洞，该漏洞源于身份验证绕过，可能导致未经验证的用户访问受保护功能。

Description (English)

WeGIA is the network manager of a welfare institution of the Nelson Lazarin personal developer. The previous version of WeGIA 3.4.5 had an access control error loophole, which stemmed from the circumvention of the authentication, which could lead to uncertified users accessing protected functions.

Hazard Level

High

Vulnerability Type

访问控制错误

Affected Vendor

Live Support

Published

2025-07-16

Last Modified

2026-02-24

References

https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-6p76-7mm4-j5rj

Patch

https://github.com/LabRedesCefetRJ/WeGIA/releases