CVE-2025-62179

Name of the Vulnerable Software and Affected Versions WeGIA versions prior to 3.5.1

Description WeGIA is a Web Manager for Institutions. A SQL Injection issue exists in the /html/funcionario/cadastro funcionario pessoa existente.php API endpoint, specifically affecting the cpf parameter. Successful exploitation allows attackers to execute arbitrary SQL commands, potentially compromising the database's confidentiality, integrity, and availability.

Recommendations Update to version 3.5.1 or later.