CVE-2025-26612

Name of the Vulnerable Software and Affected Versions: WeGIA versions prior to 3.2.13

Description: A SQL Injection vulnerability was discovered in the WeGIA application, adicionar almoxarife.php endpoint. This vulnerability could allow an attacker to execute arbitrary SQL queries, allowing unauthorized access to sensitive information.

Recommendations: For versions prior to 3.2.13, upgrade to version 3.2.13 to address the SQL Injection vulnerability in the adicionar almoxarife.php endpoint. As a temporary workaround, consider restricting access to the adicionar almoxarife.php endpoint until the upgrade is applied.