CVE-2025-53935 – WeGIA Reflected Cross-Site Scripting (XSS)

July 16, 2025

CVE ID : CVE-2025-53935

Published : July 16, 2025, 4:15 p.m. | 2 hours, 28 minutes ago

Description : WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the `personalizacao_selecao.php` endpoint of the WeGIA application prior to version 3.4.5. This vulnerability allows attackers to inject malicious scripts in the `id` parameter. Version 3.4.5 fixes the issue.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-53934 – WeGIA Stored Cross-Site Scripting (XSS) Vulnerability

Next Article CVE-2025-53929 – WeGIA Stored Cross-Site Scripting Vulnerability

Slack’s AI search now works across an organization’s entire knowledge base

In-House vs Outsourcing for React.js Development: Understand What Is Best for Your Enterprise

Tiny Screens, Big Impact: The Forgotten Art Of Developing Web Apps For Feature Phones

Kong AI Gateway 3.11 introduces new method for reducing token costs

Microsoft is on track to become the second $4 trillion company by market cap, following NVIDIA — and mass layoffs

The wireless gaming mouse I’ve used for 5 years is down to $30 — that’s less than 2 cents a day (and it’s still my favorite)

Researchers from OpenAI, Anthropic, Meta, and Google issue joint AI safety warning – here’s why

You’ll soon be able to chat with Copilot and attend Teams meetings while driving your Mercedes-Benz — now there’s no excuse to miss your meetings

The details of TC39’s last meeting

The details of TC39’s last meeting

Tinkerwell v5 is now released

Tinkerwell v5 is now released

Microsoft is on track to become the second $4 trillion company by market cap, following NVIDIA — and mass layoffs

Microsoft is on track to become the second $4 trillion company by market cap, following NVIDIA — and mass layoffs

The wireless gaming mouse I’ve used for 5 years is down to $30 — that’s less than 2 cents a day (and it’s still my favorite)

You’ll soon be able to chat with Copilot and attend Teams meetings while driving your Mercedes-Benz — now there’s no excuse to miss your meetings

CVE-2025-53935 – WeGIA Reflected Cross-Site Scripting (XSS)

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

CVE-2025-48936 – Zitadel Host Header Injection Vulnerability

Microsoft addresses Outlook web search issues with latest fix

CVE-2025-3052 – Microsoft UEFI Firmware Arbitrary Write Vulnerability

How to Create an AWS Free Tier Account – A Step-by-Step Guide

How to Setup Agent Node in Jenkins Step-by-Step

CVE-2025-6897 – D-Link DI-7300G+ HTTPD Debug ASP OS Command Injection Vulnerability

CVE-2024-51983 – Cisco Web Services Crash DoS

Paragon Spyware used to Spy on European Journalists

CVE-2025-53935 – WeGIA Reflected Cross-Site Scripting (XSS)

Related Posts