| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-22141 | WeGIA SQL Injection (Blind Time-Based) endpoint 'verificar_recursos_cargo.php' parameter 'cargo' | nilsonLazarin | WeGIA | 中危 | - | 2025-01-08 18:27:09 | Deep Dive |
| CVE-2025-22139 | WeGIA Cross-Site Scripting (XSS) Reflected endpoint `configuracao_geral.php` parameter `msg` | nilsonLazarin | WeGIA | 中危 | - | 2025-01-08 18:26:04 | Deep Dive |
| CVE-2025-22140 | WeGIA SQL Injection (Blind Time-Based) endpoint 'dependente_listar_um.php' parameter 'id_dependente' | nilsonLazarin | WeGIA | 中危 | - | 2025-01-08 18:25:58 | Deep Dive |
| CVE-2025-22133 | WeGIA Allows Arbitrary File Upload with Remote Code Execution (RCE) | nilsonLazarin | WeGIA | Critical | 9.9 | 2025-01-07 22:07:14 | Deep Dive |
| CVE-2025-22132 | WeGIA has a Cross-Site Scripting (XSS) in File Upload Field | nilsonLazarin | WeGIA | High | 8.3 | 2025-01-07 22:04:42 | Deep Dive |