CNNVD-202507-742 Information
CNNVD ID
CNNVD-202507-742
Related CVE
- CNNVD Published: 2025-07-07
Description (Chinese)
WeGIA是Nilson Lazarin个人开发者的一个福利机构的网络管理器。 WeGIA 3.4.3之前版本存在SQL注入漏洞,该漏洞源于id_funcionario参数未正确清理或验证,可能导致SQL注入攻击。
Description (English)
WeGIA is the network manager of a welfare institution of the Nelson Lazarin personal developer. The previous version of WeGIA 3.4.3 had an injection loophole in SQL, which originated from the fact that the id funcionario parameters were not properly cleared or verified, which could have led to an SQL injection attack.
Hazard Level
Low
Vulnerability Type
SQL注入
Affected Vendor
Live Support
Published
2025-07-07
Last Modified
2026-02-24
References
https://github.com/LabRedesCefetRJ/WeGIA/commit/0a061bcc5024937edd18ab3e65ccc8f38deb6957 https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-rrj6-pj6w-8j2r https://access.redhat.com/security/cve/cve-2025-53529
Patch
https://github.com/LabRedesCefetRJ/WeGIA/releases
Share on: