CVE-2025-53937 – WeGIA SQL Injection Vulnerability

July 16, 2025

CVE ID : CVE-2025-53937

Published : July 16, 2025, 4:15 p.m. | 2 hours, 28 minutes ago

Description : WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerability was identified in the `/controle/control.php` endpoint, specifically in the `cargo` parameter, of WeGIA prior to version 3.4.5. This vulnerability allows attackers to execute arbitrary SQL commands, compromising the confidentiality, integrity, and availability of the database. Version 3.4.5 fixes the issue.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-20272 – Cisco Prime Infrastructure and EPNM Blind SQL Injection

Next Article CVE-2025-53943 – VoidBot Open-Source Discord Bot Command Injection Vulnerability

Report: 71% of tech leaders won’t hire devs without AI skills

Slack’s AI search now works across an organization’s entire knowledge base

In-House vs Outsourcing for React.js Development: Understand What Is Best for Your Enterprise

Tiny Screens, Big Impact: The Forgotten Art Of Developing Web Apps For Feature Phones

Too many open browser tabs? This is still my favorite solution – and has been for years

This new browser won’t monetize your every move – how to try it

Pokémon has partnered with one of the biggest PC gaming brands again, and you can actually buy these accessories — but do you even want to?

AMD’s budget Ryzen AI 5 330 processor will introduce a wave of ultra-affordable Copilot+ PCs with its mobile 50 TOPS NPU

The details of TC39’s last meeting

The details of TC39’s last meeting

Reclaim Space: Delete Docker Orphan Layers

Notes Android App Using SQLite

KeySmith – SSH key management

KeySmith – SSH key management

Pokémon has partnered with one of the biggest PC gaming brands again, and you can actually buy these accessories — but do you even want to?

AMD’s budget Ryzen AI 5 330 processor will introduce a wave of ultra-affordable Copilot+ PCs with its mobile 50 TOPS NPU

CVE-2025-53937 – WeGIA SQL Injection Vulnerability

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

AI unleashes more advanced scams. Here’s what to look out for (and how to stay protected)

More Mainframe Trailblazer Trivia

CVE-2025-49600 – MbedTLS LMS Signature Forgery Vulnerability

CVE-2025-53482 – Wikimedia Foundation Mediawiki – IPInfo Extension Cross-Site Scripting (XSS) Vulnerability

8 Useful Free and Open Source Virtualization Tools

CVE-2025-5852 – Tenda AC6 PPTP Form Set User List Buffer Overflow

Apple Backports Zero-Day Patches to Older Devices in Latest Security Update

SAP NetWeaver 0-day Vulnerability Exploited in the Wild to Deploy Webshells

CVE-2025-53937 – WeGIA SQL Injection Vulnerability

Related Posts