SB2026043094 - Multiple vulnerabilities in WeGIA

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Command injection (CVE-ID: CVE-2025-50201)

The vulnerability allows a remote attacker to execute arbitrary commands on the server.

The vulnerability exists due to command injection in the /html/configuracao/debug_info.php endpoint when processing the branch POST parameter. A remote attacker can send a specially crafted request with shell metacharacters to execute arbitrary commands on the server.

The issue is blind, so command output is not directly returned in the HTTP response and time-based techniques are required to confirm exploitation.

2) SQL injection (CVE-ID: CVE-2025-52474)

The vulnerability allows a remote user to disclose sensitive information.

The vulnerability exists due to SQL injection in the id parameter of the /WeGIA/controle/control.php endpoint when handling crafted GET requests. A remote user can send a specially crafted request to disclose sensitive information.

Remediation

Install update from vendor's website.

References

• https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-52p5-5fmw-9hrf
• https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-rwvh-2gfh-wmcm
• https://github.com/advisories/GHSA-rwvh-2gfh-wmcm