| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-40286 | WeGIA has Cross-Site Scripting in Controle de Contribuição | LabRedesCefetRJ | WeGIA | High | 7.5 | 2026-04-17 20:27:59 | Deep Dive |
| CVE-2026-40285 | WeGIA has SQL Injection via Session Variable Override in DespachoControle.php | LabRedesCefetRJ | WeGIA | High | 8.8 | 2026-04-17 20:25:33 | Deep Dive |
| CVE-2026-40284 | WeGIA has stored XSS in listar_despachos.php | LabRedesCefetRJ | WeGIA | Medium | 6.8 | 2026-04-17 20:24:10 | Deep Dive |
| CVE-2026-40282 | WeGIA has stored XSS in intercorrencia_visualizar.php | LabRedesCefetRJ | WeGIA | - | - | 2026-04-17 20:16:47 | Deep Dive |
| CVE-2026-40283 | WeGIA has stored XSS in profile_paciente.php | LabRedesCefetRJ | WeGIA | Medium | 6.8 | 2026-04-17 20:03:14 | Deep Dive |
| CVE-2026-35475 | WeGIA - Open Redirect - backup redirection — Unvalidated $_GET['redirect'] | LabRedesCefetRJ | WeGIA | - | - | 2026-04-06 21:17:05 | Deep Dive |
| CVE-2026-35474 | WeGIA - Open Redirect - atualizacao redirection - Unvalidated $_GET['redirect'] | LabRedesCefetRJ | WeGIA | - | - | 2026-04-06 21:13:26 | Deep Dive |
| CVE-2026-35473 | WeGIA - Open Redirect - IentradaControle - listarId() - Unvalidated $_GET['nextPage'] | LabRedesCefetRJ | WeGIA | - | - | 2026-04-06 21:12:36 | Deep Dive |
| CVE-2026-35399 | WeGIA has Stored XSS in backup file names | LabRedesCefetRJ | WeGIA | - | - | 2026-04-06 21:06:34 | Deep Dive |
| CVE-2026-35472 | WeGIA - Open Redirect - EstoqueControle - listarTodos() - Unvalidated $_GET['nextPage'] | LabRedesCefetRJ | WeGIA | - | - | 2026-04-06 21:05:27 | Deep Dive |
| CVE-2026-35398 | WeGIA - Open Redirect - OrigemControle - listarTodos() & listarId_Nome() - Unvalidated $_GET['nextPage'] | LabRedesCefetRJ | WeGIA | - | - | 2026-04-06 21:04:21 | Deep Dive |
| CVE-2026-35396 | WeGIA - Open Redirect - IsaidaControle - listarId() - Unvalidated $_GET['nextPage'] | LabRedesCefetRJ | WeGIA | - | - | 2026-04-06 21:02:38 | Deep Dive |
| CVE-2026-35395 | WeGIA has a SQL Injection in DespachoDAO.php via id_memorando parameter | LabRedesCefetRJ | WeGIA | High | 8.8 | 2026-04-06 21:01:29 | Deep Dive |
| CVE-2026-33991 | WeGIA has SQL Injection in deletar_tag.php | LabRedesCefetRJ | WeGIA | High | 8.8 | 2026-03-27 22:10:51 | Deep Dive |
| CVE-2026-33136 | WeGIA has Reflected Cross-Site Scripting (XSS) in `listar_memorandos_ativos.php` via `sccd` parameter | LabRedesCefetRJ | WeGIA | Critical | 9.3 | 2026-03-20 10:41:05 | Deep Dive |
| CVE-2026-33135 | WeGIA has Reflected Cross-Site Scripting (XSS) in `novo_memorandoo.php` via `sccs` parameter | LabRedesCefetRJ | WeGIA | Critical | 9.3 | 2026-03-20 10:38:44 | Deep Dive |
| CVE-2026-33134 | WeGIA has Authenticated Time-Based Blind SQL Injection in `restaurar_produto.php` via `id_produto` parameter | LabRedesCefetRJ | WeGIA | Critical | 9.3 | 2026-03-20 10:35:43 | Deep Dive |
| CVE-2026-33133 | WeGIA has an arbitrary SQL execution vulnerability via crafted backup archive | LabRedesCefetRJ | WeGIA | 高危 | - | 2026-03-20 10:31:38 | Deep Dive |
| CVE-2026-31896 | WeGIA has a Time-Based Blind SQL Injection in remover_produto_ocultar.php | LabRedesCefetRJ | WeGIA | Critical | 9.8 | 2026-03-11 19:10:32 | Deep Dive |
| CVE-2026-31895 | WeGIA has a SQL Injection via Direct Query Interpolation in restaurar_produto.php | LabRedesCefetRJ | WeGIA | High | 8.8 | 2026-03-11 19:08:19 | Deep Dive |