CVE-2025-54079 – WeGIA SQL Injection Vulnerability

July 18, 2025

CVE ID : CVE-2025-54079

Published : July 18, 2025, 4:15 p.m. | 1 hour, 3 minutes ago

Description : WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerability was identified in versions prior to 3.4.6 in the endpoint `/html/atendido/Profile_Atendido.php`, in the `idatendido` parameter. This vulnerability allow an authorized attacker to execute arbitrary SQL queries, allowing access to sensitive information. Version 3.4.6 fixes the issue.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-7789 – Xuxueli xxl-job Password Hashing Weakness

Next Article CVE-2025-54078 – WeGIA Reflected Cross-Site Scripting (XSS)

Designing For TV: Principles, Patterns And Practical Guidance (Part 2)

Neo4j introduces new graph architecture that allows operational and analytics workloads to be run together

Beyond the benchmarks: Understanding the coding personalities of different LLMs

Top 10 Use Cases of Vibe Coding in Large-Scale Node.js Applications

Building smarter interactions with MCP elicitation: From clunky tool calls to seamless user experiences

From Zero to MCP: Simplifying AI Integrations with xmcp

Distribution Release: Linux Mint 22.2

Coded Smorgasbord: Basically, a Smorgasbord

Drupal 11’s AI Features: What They Actually Mean for Your Team

Drupal 11’s AI Features: What They Actually Mean for Your Team

Why Data Governance Matters More Than Ever in 2025?

Perficient Included in the IDC Market Glance for Digital Business Professional Services, 3Q25

How DevOps Teams Are Redefining Reliability with NixOS and OSTree-Powered Linux

How DevOps Teams Are Redefining Reliability with NixOS and OSTree-Powered Linux

Distribution Release: Linux Mint 22.2

‘Cronos: The New Dawn’ was by far my favorite experience at Gamescom 2025 — Bloober might have cooked an Xbox / PC horror masterpiece

CVE-2025-54079 – WeGIA SQL Injection Vulnerability

Critical Linux UDisks Daemon Vulnerability (CVE-2025-8067) Exposes Privileged Data to Local Attackers

Google Slapped with $381 Million Fine in France Over Gmail Ads, Cookie Consent Missteps

Steam’s performance tracking tool is becoming more like the Steam Deck’s — you can try it out right now

Fortnite added an AI-voiced Darth Vader people are already tricking into swearing and saying slurs — here’s his location

A Few Things About the Anchor Element’s href You Might Not Have Known

Fortinet Releases Patch for Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257)

The Role of UI/UX Design in Cybersecurity

A Breeze Of Inspiration In September (2025 Wallpapers Edition)

CVE-2025-27132 – OpenHarmony Out-of-Bounds Write Arbitrary Code Execution

CVE-2025-6842 – Code-projects Product Inventory System SQL Injection Vulnerability

CVE-2025-54079 – WeGIA SQL Injection Vulnerability

Related Posts