Security Advisory

CVE-2025-55167

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-12 16:33:15

Last updated 2025-08-12 17:42:46

Assigner GitHub_M

State PUBLISHED

Description

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. Prior to version 3.4.8, a SQL Injection vulnerability was identified in the /html/funcionario/dependente_remover.php endpoint, specifically in the id_dependente parameter. This vulnerability allows attackers to execute arbitrary SQL commands, compromising the confidentiality, integrity, and availability of the database. This issue has been patched in version 3.4.8.

← Browse all CVEs View on cve.org ↗