Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 173 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-31894 WeGIA affected by arbitrary file read via symlink in backup restore LabRedesCefetRJWeGIA--2026-03-11 19:05:52 Deep Dive
CVE-2026-28411 WeGIA Vulnerable to Authentication Bypass via `extract($_REQUEST)` LabRedesCefetRJWeGIA Critical 9.8 2026-02-27 21:52:05 Deep Dive
CVE-2026-28409 WeGIA Vulnerable to Remote Code Execution (RCE) via OS Command Injection LabRedesCefetRJWeGIA Critical 10.0 2026-02-27 21:50:22 Deep Dive
CVE-2026-28408 WeGIA lacks authentication verification in adicionar_tipo_docs_atendido.php LabRedesCefetRJWeGIA Critical 9.8 2026-02-27 21:49:15 Deep Dive
CVE-2026-23731 WeGIA Clickjacking Vulnerability LabRedesCefetRJWeGIA Medium 4.3 2026-01-16 19:50:16 Deep Dive
CVE-2026-23730 WeGIA has an Open Redirect Vulnerability in control.php Endpoint via nextPage Parameter (metodo=listarTodos, nomeClasse=ProdutoControle) LabRedesCefetRJWeGIA 中危 -2026-01-16 19:48:24 Deep Dive
CVE-2026-23729 WeGIA has an Open Redirect Vulnerability in control.php Endpoint via nextPage Parameter (metodo=listarDescricao, nomeClasse=ProdutoControle) LabRedesCefetRJWeGIA 中危 -2026-01-16 19:47:10 Deep Dive
CVE-2026-23728 WeGIA has an Open Redirect Vulnerability in control.php Endpoint via nextPage Parameter (metodo=listarTodos, nomeClasse=DestinoControle) LabRedesCefetRJWeGIA 中危 -2026-01-16 19:46:07 Deep Dive
CVE-2026-23727 WeGIA has an Open Redirect Vulnerability in control.php Endpoint via nextPage Parameter (metodo=listarTodos, nomeClasse=TipoSaidaControle) LabRedesCefetRJWeGIA 中危 -2026-01-16 19:41:47 Deep Dive
CVE-2026-23726 WeGIA has an Open Redirect Vulnerability in control.php Endpoint via nextPage Parameter (metodo=listarTodos, nomeClasse=TipoEntradaControle) LabRedesCefetRJWeGIA 中危 -2026-01-16 19:40:05 Deep Dive
CVE-2026-23725 WeGIA Stored Cross-Site Scripting (XSS) – nome Parameter on Adopters Information Page LabRedesCefetRJWeGIA 高危 -2026-01-16 19:38:27 Deep Dive
CVE-2026-23724 WeGIA Stored Cross-Site Scripting (XSS) – atendido_idatendido Parameter on Occurrence Registration Page LabRedesCefetRJWeGIA Medium 4.3 2026-01-16 19:37:06 Deep Dive
CVE-2026-23722 WeGIA has a Reflected Cross-Site Scripting (XSS) vulnerability allowing arbitrary code execution and UI redressing. LabRedesCefetRJWeGIA Critical 9.1 2026-01-16 19:29:54 Deep Dive
CVE-2026-23723 WeGIA has a Critical SQL Injection in Atendido_ocorrenciaControle via id_memorando parameter LabRedesCefetRJWeGIA High 7.2 2026-01-16 19:27:27 Deep Dive
CVE-2025-67501 WeGIA is vulnerable to SQL Injection via editar_categoria endpoint parameter LabRedesCefetRJWeGIA--2025-12-09 23:49:42 Deep Dive
CVE-2025-67496 WeGia is Vulnerable to XSS through id_pessoa Parameter on Password Configuration Page LabRedesCefetRJWeGIA Medium 4.3 2025-12-09 22:43:55 Deep Dive
CVE-2025-62598 WeGIA Vulnerable to Reflected Cross-Site Scripting via Endpoint 'pessoa/editar_info_pessoal.php' Parameter 'action' LabRedesCefetRJWeGIA--2025-10-21 16:34:57 Deep Dive
CVE-2025-62597 WeGIA Vulnerable to Reflected Cross-Site Scripting via Endpoint 'pessoa/editar_info_pessoal.php' Parameter 'sql' LabRedesCefetRJWeGIA--2025-10-21 16:34:20 Deep Dive
CVE-2025-62361 WeGIA Open Redirect Vulnerability in `control.php` endpoint `nextPage` parameter (metodo=listarTodos nomeClasse=AlmoxarifeControle) LabRedesCefetRJWeGIA--2025-10-13 21:27:39 Deep Dive
CVE-2025-62360 WeGIA SQL Injection via 'id_dependente' param at endpoint `/html/funcionario/dependente_documento.php` LabRedesCefetRJWeGIA--2025-10-13 21:24:49 Deep Dive