CVE-2025-62177

Name of the Vulnerable Software and Affected Versions WeGIA versions prior to 3.5.1

Description WeGIA is a Web Manager for Institutions. A SQL Injection issue exists in the /html/funcionario/dependente listar.php API endpoint, specifically through the id funcionario parameter. Successful exploitation allows attackers to execute arbitrary SQL commands, potentially compromising the database's confidentiality, integrity, and availability.

Recommendations Update to version 3.5.1 or later.