CVE-2026-45025 - WeGIA: Stored XSS in html/atendido/etapa_processo.php
CVE ID :CVE-2026-45025 Published : May 11, 2026, 8:25 p.m. | 39 minutes ago Description :WeGIA is a web manager for charitable institutions. In versions prior to 3.7.3, a Stored Cross-Site Scripting (XSS) vulnerability allows an authenticated user to inject malicious JavaScript into the "Etapa
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Nvidia GeForce NOW data breach confirmed — but luckily most of us will be safe, here's why
- [CYBER] Linux bitten by second severe vulnerability in as many weeks
- [CYBER] Simandou ships record quantity of iron ore, swelling Chinese stocks
- [CYBER] Anthropic's Bug-Hunting Mythos Was Greatest Marketing Stunt Ever, Says cURL Creator
- [CYBER] CVE-2026-43874 - WWBN AVideo: Incomplete Fix for YPTSocket autoEvalCodeOnHTML Strip: Unauthenticated Cross-User JavaScript Execution via `$msg['json']` Relay Bypass
- [CYBER] CVE-2026-8321 - inkeep agents runAuth Middleware runAuth.ts createDevContext authentication bypass