CVE-2025-53937 – WeGIA SQL Injection Vulnerability

July 16, 2025

CVE ID : CVE-2025-53937

Published : July 16, 2025, 4:15 p.m. | 2 hours, 28 minutes ago

Description : WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerability was identified in the `/controle/control.php` endpoint, specifically in the `cargo` parameter, of WeGIA prior to version 3.4.5. This vulnerability allows attackers to execute arbitrary SQL commands, compromising the confidentiality, integrity, and availability of the database. Version 3.4.5 fixes the issue.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-20272 – Cisco Prime Infrastructure and EPNM Blind SQL Injection

Next Article CVE-2025-53943 – VoidBot Open-Source Discord Bot Command Injection Vulnerability

The state of DevOps and AI: Not just hype

A Breeze Of Inspiration In September (2025 Wallpapers Edition)

10 Top Generative AI Development Companies for Enterprise Node.js Projects

Prompting Is A Design Act: How To Brief, Guide And Iterate With AI

Look out, Meta Ray-Bans! These AI glasses just raised over $1M in pre-orders in 3 days

Samsung ‘Galaxy Glasses’ powered by Android XR are reportedly on track to be unveiled this month

The M4 iPad Pro is discounted $100 as a last-minute Labor Day deal

Distribution Release: Linux From Scratch 12.4

Enhanced Queue Job Control with Laravel’s ThrottlesExceptions failWhen() Method

Enhanced Queue Job Control with Laravel’s ThrottlesExceptions failWhen() Method

August report 2025

Fake News Detection using Python Machine Learning (ML)

Installing Proxmox on a Raspberry Pi to run Virtual Machines on it

Installing Proxmox on a Raspberry Pi to run Virtual Machines on it

Download Transcribe! for Windows

Microsoft Fixes CertificateServicesClient (CertEnroll) Error in Windows 11

CVE-2025-53937 – WeGIA SQL Injection Vulnerability

Hacker suspected of trying to cheat his way into university is arrested in Spain

ScarCruft Uses RokRAT Malware in Operation HanKook Phantom Targeting South Korean Academics

CVE-2025-30169 – Aspect File Upload and Execute PHP Script Injection Vulnerability

CVE-2025-4796 – Eventin WordPress Privilege Escalation Vulnerability

CVE-2025-48905 – Arkweb V8 Wasm Exception Capture Vulnerability

rbw is an unofficial Bitwarden CLI

Building a Fully-Featured 3D World in the Browser with Blender and Three.js

CVE-2025-49885 – HaruTheme WooCommerce Drag and Drop Multiple File Upload Unrestricted Upload of File with Dangerous Type Vulnerability

Build a Secure AI Code Execution Workflow Using Daytona SDK

Everything new in Microsoft Teams from April 2025

CVE-2025-53937 – WeGIA SQL Injection Vulnerability

Related Posts