CVE-2026-31895 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

WeGIA is a web manager for charitable institutions. Prior to version 3.6.6, WeGIA (Web gerenciador para instituições assistenciais) contains a SQL injection vul…
High CVSS: 8.8

CVE-2026-31895

WeGIA is a web manager for charitable institutions. Prior to version 3.6.6, WeGIA (Web gerenciador para instituições assistenciais) contains a SQL injection vulnerability in html/matPat/restaurar_produto.php. The id_produto parameter from $_GET is directly interpolated into SQL queries without parameterization or sanitization. This vulnerability is fixed in 3.6.6.
Vendor
Wegia
Product
Wegia
CWE
CWE-89
Yayın Tarihi
2026-03-11 20:16:15
Güncelleme
2026-03-13 20:06:31
Source Identifier
security-advisories@github.com
KEV Date Added
-

Kategoriler

CWE-89 Wegia HIGH Wegia 2026

Referanslar

https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-m39r-p62f-vmqm