Vulnerabilidades em LabRedesCefetRJ
176 resultadosCVE-2025-26607CRITICALSQL Injection endpoint 'documento_excluir.php' parameter 'id_funcionario' in WeGIAEPSS 0.5%CVE-2025-26606CRITICALSQL Injection endpoint 'informacao_adicional.php' parameter 'id_descricao' in WeGIAEPSS 0.5%CVE-2025-26617CRITICALSQL Injection endpoint 'historico_paciente.php' parameter 'id_fichamedica' in WeGIAEPSS 0.5%CVE-2025-24957CRITICALSQL Injection endpoint 'get_detalhes_socio.php' parameter 'id_socio' in WeGIAEPSS 0.5%CVE-2025-24902CRITICALSQL Injection endpoint 'salvar_cargo.php' parameter 'id_cargo' in WeGIAEPSS 0.5%CVE-2025-27133CRITICALWeGIA has SQL Injection endpoint at 'dao/pet/adicionar_tipo_exame.php' parameter 'tipo_exame'EPSS 0.5%CVE-2025-26611CRITICALSQL Injection endpoint 'remover_produto.php' parameter 'id_produto' in WeGIAEPSS 0.5%CVE-2025-27419CRITICALDenial of Service (DoS) in WeGIA due to Recursive Crawling of Dynamic URLsEPSS 0.5%CVE-2025-26614CRITICALSQL Injection endpoint 'deletar_documento.php' parameter 'id_cargo' in WeGIAEPSS 0.5%CVE-2025-26612CRITICALSQL Injection endpoint 'adicionar_almoxarife.php' parameter 'id_almoxarifado', 'id_funcionario' in WeGIAEPSS 0.5%CVE-2025-24906CRITICALSQL Injection endpoint 'get_detalhes_cobranca.php' parameter 'codigo' in WeGIAEPSS 0.5%CVE-2025-26610CRITICALSQL Injection endpoint 'restaurar_produto_desocultar.php' parameter 'id_produto' in WeGIAEPSS 0.5%CVE-2025-27096CRITICALSQL Injection endpoint 'html/personalizacao_upload.php' parameter 'id_campo' in WeGIAEPSS 0.5%CVE-2025-24901CRITICALSQL Injection endpoint 'deletar_permissao.php' parameter 'c', 'a', 'r' in WeGIAEPSS 0.5%CVE-2025-24958CRITICALSQL Injection endpoint 'salvar_tag.php' parameter 'id_tag' in WeGIAEPSS 0.5%CVE-2026-28408CRITICALWeGIA lacks authentication verification in adicionar_tipo_docs_atendido.phpEPSS 0.5%CVE-2025-30361CRITICALWeGIA Vulnerable to Broken Authentication - Old Password ValidationEPSS 0.5%CVE-2025-46828CRITICALUnauthenticated SQL Injection on get_socios.php endpointEPSS 0.5%CVE-2025-55167CRITICALWeGIA SQL Injection via id_fichamedica at endpoint `GET/html/funcionario/dependente_remover.php`EPSS 0.5%CVE-2025-53529CRITICALWeGIA allows SQL Injection in html/funcionario/profile_funcionario.php (id_funcionario parameter)EPSS 0.5%