CNNVD-202510-265 Information

CNNVD ID

CNNVD-202510-265

Related CVE

CVE-2025-61606

• CNNVD Published: 2025-10-02

Description (Chinese)

WeGIA是Nilson Lazarin个人开发者的一个福利机构的网络管理器。 WeGIA 3.4.12及之前版本存在安全漏洞，该漏洞源于nextPage参数存在开放重定向，可能导致用户被重定向到任意外部域。

Description (English)

WeGIA is the network manager of a welfare institution of the Nelson Lazarin personal developer. WeGIA 3.4.12 and previous versions have a security loophole, which stems from the open re-direction of the nextPage parameter, which may lead to the re-direction of users to any external domain.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-10-02

Last Modified

2026-02-24

References

https://github.com/LabRedesCefetRJ/WeGIA/commit/85051ad14b1e7fa14116e74a90c0bd5480b2ec84 https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-m64v-hm7q-33wr

Patch

https://github.com/LabRedesCefetRJ/WeGIA/releases