CVE-2025-53823 Information

Description

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. Versions prior to 3.4.5 have a SQL Injection vulnerability in the endpoint /WeGIA/html/socio/sistema/processa_deletar_socio.php in the id_socio parameter. This vulnerability allows the execution of arbitrary SQL commands which can compromise the confidentiality integrity and availability of stored data. Version 3.4.5 fixes the issue.

Reference

https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-p8xr-qg3c-6ww2

Related CNNVD

CNNVD-202507-1927 (Published: 2025-07-14)