CNNVD-202510-263 Information

CNNVD ID

CNNVD-202510-263

Related CVE

CVE-2025-61665

• CNNVD Published: 2025-10-02

Description (Chinese)

WeGIA是Nilson Lazarin个人开发者的一个福利机构的网络管理器。 WeGIA 3.4.12及之前版本存在安全漏洞，该漏洞源于访问控制不当，可能导致未经验证的攻击者直接访问敏感信息。

Description (English)

WeGIA is the network manager of a welfare institution of the Nelson Lazarin personal developer. WeGIA 3.4.12 and previous versions contain a security loophole that stems from inadequate access controls and may lead to direct access to sensitive information by unverified assailants.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-10-02

Last Modified

2026-02-24

References

https://github.com/LabRedesCefetRJ/WeGIA/commit/828f23a6a760a52b8bb8bfd583cc2b23c42da51e https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-62wp-6qmh-6p5f

Patch

https://github.com/LabRedesCefetRJ/WeGIA/releases