SB2025020101 - Multiple vulnerabilities in WeGIA
Published: February 1, 2025 Updated: April 30, 2026
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 6 vulnerabilities.
1) SQL injection (CVE-ID: CVE-2025-24958)
CWE-ID: CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green
The vulnerability allows a remote user to execute arbitrary SQL queries and disclose sensitive information.
The vulnerability exists due to SQL injection in the /html/socio/sistema/salvar_tag.php endpoint when handling the id_tag parameter in requests. A remote user can send a specially crafted request to execute arbitrary SQL queries and disclose sensitive information.
2) SQL injection (CVE-ID: CVE-2025-24957)
CWE-ID: CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber
The vulnerability allows a remote attacker to execute arbitrary SQL queries and disclose sensitive information.
The vulnerability exists due to SQL injection in the get_detalhes_socio.php endpoint when handling the id_socio request parameter. A remote attacker can send a specially crafted request to execute arbitrary SQL queries and disclose sensitive information.
3) SQL injection (CVE-ID: CVE-2025-24906)
CWE-ID: CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber
The vulnerability allows a remote attacker to execute arbitrary SQL queries and disclose sensitive information.
The vulnerability exists due to SQL injection in the get_detalhes_cobranca.php endpoint when handling the codigo parameter in GET requests. A remote attacker can send a specially crafted request to execute arbitrary SQL queries and disclose sensitive information.
4) SQL injection (CVE-ID: CVE-2025-24905)
CWE-ID: CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber
The vulnerability allows a remote attacker to execute arbitrary SQL queries and disclose sensitive information.
The vulnerability exists due to SQL injection in the get_codigobarras_cobranca.php endpoint when handling a request containing the codigo parameter. A remote attacker can send a specially crafted request to execute arbitrary SQL queries and disclose sensitive information.
5) SQL injection (CVE-ID: CVE-2025-24902)
CWE-ID: CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green
The vulnerability allows a remote user to execute arbitrary SQL queries and disclose sensitive information.
The vulnerability exists due to SQL injection in the salvar_cargo.php endpoint when handling a crafted id_cargo parameter in GET requests. A remote user can send a specially crafted request to execute arbitrary SQL queries and disclose sensitive information.
The vulnerable endpoint is GET /html/geral/salvar_cargo.php.
6) SQL injection (CVE-ID: CVE-2025-24901)
CWE-ID: CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green
The vulnerability allows a remote user to execute arbitrary SQL queries and disclose sensitive information.
The vulnerability exists due to SQL injection in the deletar_permissao.php endpoint when handling crafted GET requests to the c, a, or r parameters. A remote user can send a specially crafted request to execute arbitrary SQL queries and disclose sensitive information.
Remediation
Install update from vendor's website.
References
- https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-2mhx-5998-46hx
- https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-x28g-6228-99p9
- https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-jpph-g9p7-9jrm
- https://github.com/advisories/GHSA-jpph-g9p7-9jrm
- https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-qjc6-5qv6-fr8m
- https://github.com/advisories/GHSA-qjc6-5qv6-fr8m
- https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-pg73-w9vx-8mgp
- https://github.com/advisories/GHSA-pg73-w9vx-8mgp
- https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-jp48-94wm-3gmc
- https://github.com/advisories/GHSA-jp48-94wm-3gmc