CVE-2025-61604

Name of the Vulnerable Software and Affected Versions WeGIA versions 3.4.12 and below

Description WeGIA, a web manager designed for charitable institutions, is susceptible to a Cross-Site Request Forgery (CSRF) issue. The deletion function for the Almoxarifado entity is accessible through an HTTP GET request lacking CSRF protection. This allows an attacker to initiate the deletion process using a victim's active session on a malicious website.

Recommendations Update to version 3.5.0 or later.