Wegia · Wegia · CVE-2025-57764
Name of the Vulnerable Software and Affected Versions:
WeGIA versions prior to 3.4.7
Description:
WeGIA is a Web manager for charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability exists in the `cargos.php` endpoint of the application. This vulnerability allows attackers to inject malicious scripts through the `msg e` parameter.
Recommendations:
Update to version 3.4.7 or later.