Fcgituser

Name of the Vulnerable Software and Affected Versions: WeGIA versions prior to 3.4.11 Description: WeGIA is a Web manager for charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability exists in the `listar despachos.php` endpoint. Attackers can inject malicious scripts through the `id memorando` parameter. Recommendations: Update to version 3.4.11 or later.

Name of the Vulnerable Software and Affected Versions: WeGIA versions 3.4.10 and prior Description: WeGIA is a Web manager for charitable institutions. A SQL Injection vulnerability exists in the `/WeGIA/html/memorando/exibe anexo.php` API endpoint, specifically in the `id anexo` parameter. This allows an attacker to execute arbitrary SQL queries and potentially access sensitive information. Recommendations: Update WeGIA to version 3.4.11 or later.

Name of the Vulnerable Software and Affected Versions: WeGIA versions prior to 3.4.11 Description: WeGIA is a Web manager for charitable institutions. A SQL Injection vulnerability exists in the `/WeGIA/html/memorando/listar despachos.php` endpoint, specifically in the `id memorando` parameter. This allows an authorized attacker to execute arbitrary SQL queries, potentially leading to unauthorized access to sensitive information. Recommendations: Update WeGIA to version 3.4.11 or later.