CNNVD-202509-1037 Information

CNNVD ID

CNNVD-202509-1037

Related CVE

CVE-2025-58453

• CNNVD Published: 2025-09-08

Description (Chinese)

WeGIA是Nilson Lazarin个人开发者的一个福利机构的网络管理器。 WeGIA 3.4.11之前版本存在SQL注入漏洞，该漏洞源于exibe_anexo.php端点存在SQL注入。

Description (English)

WeGIA is the network manager of a welfare institution of the Nelson Lazarin personal developer. The previous version of Wegia 3.4.11 had an SQL injection loophole, which originated from the SQL injection at the exibe anexo.php endpoint.

Hazard Level

High

Vulnerability Type

SQL注入

Affected Vendor

个人开发者

Published

2025-09-08

Last Modified

2026-02-24

References

https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-gg48-pg9f-39fx https://access.redhat.com/security/cve/cve-2025-58453

Patch

https://github.com/LabRedesCefetRJ/WeGIA/releases