CNNVD-202508-2591 Information

CNNVD ID

CNNVD-202508-2591

Related CVE

CVE-2025-57763

• CNNVD Published: 2025-08-21

Description (Chinese)

WeGIA是Nilson Lazarin个人开发者的一个福利机构的网络管理器。 WeGIA 3.4.7之前版本存在安全漏洞，该漏洞源于insere_despacho.php端点中cpf sccs参数存在反射型跨站脚本，可能导致恶意脚本注入。

Description (English)

WeGIA is the network manager of a welfare institution of the Nelson Lazarin personal developer. The previous version of WeGIA 3.4.7 had a security loophole, which stemmed from the reflection of the cpf sccs parameter in the endpoint of insere despacho.php, which could lead to malicious script injection.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-08-21

Last Modified

2026-02-24

References

https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-67w3-jf96-f754 https://nvd.nist.gov/vuln/detail/CVE-2025-57763

Patch

https://github.com/LabRedesCefetRJ/WeGIA/releases