{"vulnerability": "cve-2025-2261", "sightings": [{"uuid": "2ac09096-9e78-4a0a-8605-7279291eb481", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22618", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113823031946636210", "content": "", "creation_timestamp": "2025-01-13T20:53:55.402782Z"}, {"uuid": "49c23541-5e36-465c-96ab-304a92d6046b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22619", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113823031961707899", "content": "", "creation_timestamp": "2025-01-13T20:53:56.146376Z"}, {"uuid": "c52299c5-f2a3-43fe-903c-346586e9a1f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22614", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113823054063636127", "content": "", "creation_timestamp": "2025-01-13T20:59:32.948461Z"}, {"uuid": "ab455851-43f0-4b5d-b3c5-0ebf4f256825", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22615", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113823054078980794", "content": "", "creation_timestamp": "2025-01-13T20:59:33.201944Z"}, {"uuid": "a2ed1f5a-b322-4a99-8032-33988dd34d41", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22616", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113823054093673345", "content": "", "creation_timestamp": "2025-01-13T20:59:33.544975Z"}, {"uuid": "701bc6d4-df0e-4e84-ab7a-887efcad64d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22617", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113823054108124936", "content": "", "creation_timestamp": "2025-01-13T20:59:33.656099Z"}, {"uuid": "890ca2de-1bcd-4310-b4b8-78fdd77a6d4f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22613", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfnntbwcga2t", "content": "", "creation_timestamp": "2025-01-13T21:15:44.260531Z"}, {"uuid": "3a5b8014-074f-4570-9826-8d1c592bd56d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22615", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfnntgh3452n", "content": "", "creation_timestamp": "2025-01-13T21:15:48.968350Z"}, {"uuid": "9222581c-cfae-459e-8778-a1b545e71088", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22614", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfnnte3nhp2f", "content": "", "creation_timestamp": "2025-01-13T21:15:46.803840Z"}, {"uuid": "fd6caacb-e59d-4ee0-b2a5-8e25a9c7bd4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22616", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfnntj2ed42h", "content": "", "creation_timestamp": "2025-01-13T21:15:51.649116Z"}, {"uuid": "c5c7a852-8eaf-44b0-aff6-5e11cc3fd935", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22617", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfnntlcqxm2e", "content": "", "creation_timestamp": "2025-01-13T21:15:54.042540Z"}, {"uuid": "e620bbf1-a48d-4877-acfe-ff59e214b54d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22618", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfnntnwkgx2d", "content": "", "creation_timestamp": "2025-01-13T21:15:56.767414Z"}, {"uuid": "6f6b23ad-50b1-4792-96e8-3a60e519ff6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22619", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfnntqjio42h", "content": "", "creation_timestamp": "2025-01-13T21:15:59.462199Z"}, {"uuid": "19d2190f-0a5a-46ec-b2f7-5337bb4885bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22613", "type": "seen", "source": "https://bsky.app/profile/gothburz.bsky.social/post/3lfpkhdfziq2e", "content": "", "creation_timestamp": "2025-01-14T15:20:41.557463Z"}, {"uuid": "daf27359-78a7-4432-807a-f8ae554a4ea6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22614", "type": "seen", "source": "https://bsky.app/profile/gothburz.bsky.social/post/3lfplkx763d2e", "content": "", "creation_timestamp": "2025-01-14T15:40:36.736134Z"}, {"uuid": "379392dd-6b4e-4a16-a96f-60eb76d2801d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22618", "type": "seen", "source": "https://bsky.app/profile/gothburz.bsky.social/post/3lfpmsb7r6w2o", "content": "", "creation_timestamp": "2025-01-14T16:02:35.988995Z"}, {"uuid": "711155f6-5749-481a-b281-3042b91960e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22612", "type": "seen", "source": "https://bsky.app/profile/tmjintel.bsky.social/post/3lgxwu2lt2y24", "content": "", "creation_timestamp": "2025-01-30T16:49:03.593484Z"}, {"uuid": "040e557d-1e0c-4882-a87d-34851c925afa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22611", "type": "seen", "source": "https://bsky.app/profile/tmjintel.bsky.social/post/3lgxwu2lt2y24", "content": "", "creation_timestamp": "2025-01-30T16:49:03.652608Z"}, {"uuid": "eaf07f76-2223-48ce-9fb7-a6544645ad78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22610", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113884325135258816", "content": "", "creation_timestamp": "2025-01-24T16:41:35.251333Z"}, {"uuid": "509ab446-2420-48fb-8081-774b04557466", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22611", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113884325151720224", "content": "", "creation_timestamp": "2025-01-24T16:41:35.504355Z"}, {"uuid": "2d3f5ac2-aa6b-4761-9999-0f07e5af7805", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22612", "type": "seen", "source": "https://bsky.app/profile/dinosn.bsky.social/post/3lgxclr6auk2w", "content": "", "creation_timestamp": "2025-01-30T10:46:31.478918Z"}, {"uuid": "b9cc3136-7c7d-4f3b-aa86-4972a945a099", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22611", "type": "seen", "source": "https://bsky.app/profile/dinosn.bsky.social/post/3lgxclr6auk2w", "content": "", "creation_timestamp": "2025-01-30T10:46:31.551029Z"}, {"uuid": "062eb6b0-cfc3-4273-94c6-dadd9cd2b4da", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22611", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113884588233878083", "content": "", "creation_timestamp": "2025-01-24T17:48:31.175542Z"}, {"uuid": "378c7ba1-24b9-4005-a365-fbb038cd7607", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22612", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113884588338312096", "content": "", "creation_timestamp": "2025-01-24T17:48:31.871653Z"}, {"uuid": "ca0c9b6a-0b2d-4eb6-95ca-3c6d534e16ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2261", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lppllfmhot2t", "content": "", "creation_timestamp": "2025-05-21T21:52:47.853579Z"}, {"uuid": "7d5ded18-f38b-43b0-bc86-795f3319e56a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22612", "type": "seen", "source": "https://bsky.app/profile/gothburz.bsky.social/post/3lgxlrgun4b2b", "content": "", "creation_timestamp": "2025-01-30T13:30:44.500862Z"}, {"uuid": "e04656de-3e15-4273-b637-b1159235ea85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-22612", "type": "seen", "source": "https://bsky.app/profile/kyosuke-tanaka.bsky.social/post/3lgubj3myys2n", "content": "", "creation_timestamp": "2025-01-29T05:49:07.307079Z"}, {"uuid": "dd4a0101-7cf3-451a-bdef-849668005b97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-22611", "type": "seen", "source": "https://bsky.app/profile/kyosuke-tanaka.bsky.social/post/3lgubj3myys2n", "content": "", "creation_timestamp": "2025-01-29T05:49:07.374130Z"}, {"uuid": "73542369-10c0-42f7-9cba-42a2ceb70b0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22612", "type": "seen", "source": "https://bsky.app/profile/bolhasec.com/post/3loyfeaar2k2z", "content": "", "creation_timestamp": "2025-05-12T16:30:11.755450Z"}, {"uuid": "2a6a4685-f619-419f-8687-c2073fb7b5e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22611", "type": "seen", "source": "https://bsky.app/profile/bolhasec.com/post/3loyfeaar2k2z", "content": "", "creation_timestamp": "2025-05-12T16:30:11.841076Z"}, {"uuid": "0dcdd19c-7fa5-4a9b-9118-978a166b9c59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22616", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1385", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22616\n\ud83d\udd39 Description: WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scripting (XSS) vulnerability was identified in the `dependente_parentesco_adicionar.php` endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts into the `descricao` parameter. The injected scripts are stored on the server and executed automatically whenever the affected page is accessed by users, posing a significant security risk. The application fails to properly validate and sanitize user inputs in the `dependente_parentesco_adicionar.php` parameter. This lack of validation allows attackers to inject malicious scripts, which are then stored on the server. Whenever the affected page is accessed, the malicious payload is executed in the victim's browser, potentially compromising the user's data and system. This issue has been addressed in version 3.2.6 and all users are advised to upgrade. There are no known workarounds for this vulnerability.\n\ud83d\udccf Published: 2025-01-13T20:54:46.800Z\n\ud83d\udccf Modified: 2025-01-13T20:54:46.800Z\n\ud83d\udd17 References:\n1. https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-xm3h-x3rv-whr5\n2. https://github.com/LabRedesCefetRJ/WeGIA/commit/1825e235aa4ab1b8b641a02c3ec8bc32ea7a8433", "creation_timestamp": "2025-01-13T21:11:36.000000Z"}, {"uuid": "e8a94452-a8c1-433f-afce-8897e6e2a785", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22612", "type": "seen", "source": "https://t.me/cvedetector/16310", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22612 - Coolify Key Disclosure and Remote Command Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-22612 \nPublished : Jan. 24, 2025, 5:15 p.m. | 44\u00a0minutes ago \nDescription : Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.374, the missing authorization allows an authenticated user to retrieve any existing private keys on a coolify instance in plain text. If the server configuration of IP / domain, port (most likely 22) and user (root) matches with the victim's server configuration, then the attacker can execute arbitrary commands on the remote server. Version 4.0.0-beta.374 fixes the issue. \nSeverity: 10.0 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-24T19:25:40.000000Z"}, {"uuid": "6e74aee1-d3ea-4766-b21f-53628f36777f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22611", "type": "seen", "source": "https://t.me/cvedetector/16309", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22611 - Coolify Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-22611 \nPublished : Jan. 24, 2025, 5:15 p.m. | 44\u00a0minutes ago \nDescription : Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.361, the missing authorization allows any authenticated user to escalate his or any other team members privileges to any role, including the owner role. He's also able to kick every other member out of the team, including admins and owners. This allows the attacker to access the `Terminal` feature and execute remote commands. Version 4.0.0-beta.361 fixes the issue. \nSeverity: 9.9 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-24T19:25:36.000000Z"}, {"uuid": "3b38415f-2f9c-47c4-92cf-0f4fa3070e3c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22610", "type": "seen", "source": "https://t.me/cvedetector/16308", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22610 - Coolify OAuth Configuration Disclosure and Modification\", \n  \"Content\": \"CVE ID : CVE-2025-22610 \nPublished : Jan. 24, 2025, 5:15 p.m. | 44\u00a0minutes ago \nDescription : Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.361, the missing authorization allows any authenticated user to fetch the global coolify instance OAuth configuration. This exposes the \"client id\" and \"client secret\" for every custom OAuth provider. The attacker can also modify the global OAuth configuration. Version 4.0.0-beta.361 fixes the issue. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-24T19:25:35.000000Z"}, {"uuid": "2fcd0f8b-9cbd-41af-b642-17d01023d602", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22617", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1388", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22617\n\ud83d\udd39 Description: WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the `editar_socio.php` endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts in the `socio` parameter. The application fails to validate and sanitize user inputs in the `socio` parameter. This lack of validation permits the injection of malicious payloads, which are reflected back to the user's browser in the server's response and executed within the context of the victim's browser. This issue has been addressed in version 3.2.7 and all users are advised to upgrade. There are no known workarounds for this vulnerability.\n\ud83d\udccf Published: 2025-01-13T20:52:32.567Z\n\ud83d\udccf Modified: 2025-01-13T20:52:32.567Z\n\ud83d\udd17 References:\n1. https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-8cp5-vr69-h8xx\n2. https://github.com/LabRedesCefetRJ/WeGIA/commit/35d374736cec39082ed297bb3cd55fa6286050ad", "creation_timestamp": "2025-01-13T21:11:42.000000Z"}, {"uuid": "38186b40-695d-407f-bf69-41cc1e417ac8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22615", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1382", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22615\n\ud83d\udd39 Description: WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the `Cadastro_Atendido.php` endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts in the `cpf` parameter. The application fails to validate and sanitize user inputs in the `cpf` parameter. This lack of validation permits the injection of malicious payloads, which are reflected back to the user's browser in the server's response and executed within the context of the victim's browser. This issue has been addressed in version 3.2.6 and all users are advised to upgrade. There are no known workarounds for this vulnerability.\n\ud83d\udccf Published: 2025-01-13T20:57:09.695Z\n\ud83d\udccf Modified: 2025-01-13T20:57:09.695Z\n\ud83d\udd17 References:\n1. https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-6q73-74pc-p3c8\n2. https://github.com/LabRedesCefetRJ/WeGIA/commit/61ae1c3bec3c76e039f5ef48bc46cea30562192e", "creation_timestamp": "2025-01-13T21:11:27.000000Z"}, {"uuid": "85e27a43-2cbe-4e3c-823e-4f96b33f53c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22618", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1391", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22618\n\ud83d\udd39 Description: WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scripting (XSS) vulnerability was identified in the `adicionar_cargo.php` endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts into the `cargo` parameter. The injected scripts are stored on the server and executed automatically whenever the affected page is accessed by users, posing a significant security risk. The application fails to properly validate and sanitize user inputs in the `adicionar_cargo.php` parameter. This lack of validation allows attackers to inject malicious scripts, which are then stored on the server. Whenever the affected page is accessed, the malicious payload is executed in the victim's browser, potentially compromising the user's data and system. This issue has been addressed in release version 3.2.6 and all users are advised to upgrade. There are no known workarounds for this vulnerability.\n\ud83d\udccf Published: 2025-01-13T20:50:30.664Z\n\ud83d\udccf Modified: 2025-01-13T20:50:30.664Z\n\ud83d\udd17 References:\n1. https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-2775-42rh-535q\n2. https://github.com/LabRedesCefetRJ/WeGIA/commit/f3b1cd90e33b790b6b2049c69d22c6d50fe965a1", "creation_timestamp": "2025-01-13T21:11:53.000000Z"}, {"uuid": "7be390e3-7ebc-4896-be1d-8e7c23a0b7c4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22614", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1381", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22614\n\ud83d\udd39 Description: WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scripting (XSS) vulnerability was identified in the `dependente_editarInfoPessoal.php` endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts into the `nome` and `SobrenomeForm`parameters. The injected scripts are stored on the server and executed automatically whenever the affected page is accessed by users, posing a significant security risk. The application fails to properly validate and sanitize user inputs in the `dependente_editarInfoPessoal.php` parameters. This lack of validation allows attackers to inject malicious scripts, which are then stored on the server. Whenever the affected page is accessed, the malicious payload is executed in the victim's browser, potentially compromising the user's data and system. This issue has been addressed in version 3.2.6 and all users are advised to upgrade. There are no known workarounds for this vulnerability.\n\ud83d\udccf Published: 2025-01-13T20:58:11.230Z\n\ud83d\udccf Modified: 2025-01-13T20:58:11.230Z\n\ud83d\udd17 References:\n1. https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-wr55-2952-79rh\n2. https://github.com/LabRedesCefetRJ/WeGIA/commit/8eb446f132ceba002559da2fd8745386096d494e", "creation_timestamp": "2025-01-13T21:11:23.000000Z"}, {"uuid": "8d007376-05ba-464d-afeb-18a6dd06e89b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22619", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1394", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22619\n\ud83d\udd39 Description: WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the `editar_permissoes.php` endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts in the `msg_c` parameter. The application fails to validate and sanitize user inputs in the `msg_c` parameter. This lack of validation permits the injection of malicious payloads, which are reflected back to the user's browser in the server's response and executed within the context of the victim's browser. This issue has been addressed in release version 3.2.6. All users are advised to upgrade. There are no known workarounds for this vulnerability.\n\ud83d\udccf Published: 2025-01-13T20:47:26.312Z\n\ud83d\udccf Modified: 2025-01-13T20:47:26.312Z\n\ud83d\udd17 References:\n1. https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-jfjj-7rgc-6j2m\n2. https://github.com/LabRedesCefetRJ/WeGIA/commit/f1233c30f00398f7a02fd9dd9cd46fb35098f2a4", "creation_timestamp": "2025-01-13T21:12:04.000000Z"}, {"uuid": "d2608c03-b21c-4ac8-bde5-a8d310cf34dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22613", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1423", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22613\n\ud83d\udd39 Description: WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scripting (XSS) vulnerability was identified in the `informacao_adicional.php` endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts into the `descricao` parameter. The injected scripts are stored on the server and executed automatically whenever the affected page is accessed by users, posing a significant security risk. The application fails to properly validate and sanitize user inputs in the `informacao_adicional.php` parameter. This lack of validation allows attackers to inject malicious scripts, which are then stored on the server. Whenever the affected page is accessed, the malicious payload is executed in the victim's browser, potentially compromising the user's data and system. This issue has been addressed in version 3.2.6 and all users are advised to upgrade. There are no known workarounds for this vulnerability.\n\ud83d\udccf Published: 2025-01-13T20:59:10.478Z\n\ud83d\udccf Modified: 2025-01-14T00:31:18.399Z\n\ud83d\udd17 References:\n1. https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-fhpx-54ch-ccxh\n2. https://github.com/LabRedesCefetRJ/WeGIA/commit/d47412372d94dc3ca26e6416b8315895c61224fa", "creation_timestamp": "2025-01-14T01:07:28.000000Z"}, {"uuid": "2c14488f-c957-460d-a26e-194f112dba52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22612", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2947", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22612\n\ud83d\udd39 Description: Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.374, the missing authorization allows an authenticated user to retrieve any existing private keys on a coolify instance in plain text. If the server configuration of IP / domain, port (most likely 22) and user (root) matches with the victim's server configuration, then the attacker can execute arbitrary commands on the remote server. Version 4.0.0-beta.374 fixes the issue.\n\ud83d\udccf Published: 2025-01-24T16:43:49.448Z\n\ud83d\udccf Modified: 2025-01-24T16:43:49.448Z\n\ud83d\udd17 References:\n1. https://github.com/coollabsio/coolify/security/advisories/GHSA-wg8x-cgq4-vjxj", "creation_timestamp": "2025-01-24T17:05:03.000000Z"}, {"uuid": "6c90b8ad-ce07-41ed-9588-1c5881a1999b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22610", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2952", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22610\n\ud83d\udd39 Description: Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.361, the missing authorization allows any authenticated user to fetch the global coolify instance OAuth configuration. This exposes the \"client id\" and \"client secret\" for every custom OAuth provider. The attacker can also modify the global OAuth configuration. Version 4.0.0-beta.361 fixes the issue.\n\ud83d\udccf Published: 2025-01-24T16:33:17.058Z\n\ud83d\udccf Modified: 2025-01-24T16:33:17.058Z\n\ud83d\udd17 References:\n1. https://github.com/coollabsio/coolify/security/advisories/GHSA-496v-9q38-2x6c", "creation_timestamp": "2025-01-24T17:05:11.000000Z"}, {"uuid": "3056eb4a-a62e-4715-8618-ff010dbc0331", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22611", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2949", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22611\n\ud83d\udd39 Description: Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.361, the missing authorization allows any authenticated user to escalate his or any other team members privileges to any role, including the owner role. He's also able to kick every other member out of the team, including admins and owners. This allows the attacker to access the `Terminal` feature and execute remote commands. Version 4.0.0-beta.361 fixes the issue.\n\ud83d\udccf Published: 2025-01-24T16:35:21.439Z\n\ud83d\udccf Modified: 2025-01-24T16:35:21.439Z\n\ud83d\udd17 References:\n1. https://github.com/coollabsio/coolify/security/advisories/GHSA-9w72-9qww-qj6g", "creation_timestamp": "2025-01-24T17:05:05.000000Z"}, {"uuid": "fbdf4f5d-8267-4c01-84fe-6995ef3048ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22618", "type": "seen", "source": "Telegram/Dfz20AeOjbwzJdSGnPrlZTRHab2mttVS7qMbQGZ-ZJmuzDK5", "content": "", "creation_timestamp": "2025-02-14T10:09:21.000000Z"}, {"uuid": "c872d9c4-9c07-45d6-8d3c-9b39cf95d434", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22617", "type": "seen", "source": "Telegram/3SBsI3Xcn2uKuHBDc8ozB8WhzYwFH4Q1zYnKLDIJssudsB04", "content": "", "creation_timestamp": "2025-02-14T10:09:21.000000Z"}, {"uuid": "cb69c87e-4db9-4fb1-9510-fb260b65558b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22616", "type": "seen", "source": "Telegram/i_FWeyKAjcx3tNdAiX_khXD3kRZOCQG-X88slMj33O2Vel0a", "content": "", "creation_timestamp": "2025-02-14T10:09:21.000000Z"}, {"uuid": "832980a1-3feb-41dc-b200-59e9fb2080ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22615", "type": "seen", "source": "Telegram/2ikombknklU9JrD9Xupb12wBHVv2rp0dtAXoSz0cvQMcU71g", "content": "", "creation_timestamp": "2025-02-14T10:09:21.000000Z"}, {"uuid": "52bfeff3-960b-4c24-9ea2-3f3df1be4caf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22614", "type": "seen", "source": "Telegram/roTmiOfgzFSYzrDpCUi-uZi5gJJoUvFRSTYSb0BGRZz49Huw", "content": "", "creation_timestamp": "2025-02-14T10:09:21.000000Z"}, {"uuid": "3486dce0-7512-478a-b154-5d73f2bcc6ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22619", "type": "seen", "source": "Telegram/BPJpZOOyXAmRLDQuUQ95G8_fVq1yChmHX04JD0d6t9wgc_8h", "content": "", "creation_timestamp": "2025-02-14T10:09:22.000000Z"}, {"uuid": "61ffe4d9-68de-45e6-8f2a-6fbc01ba235b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22614", "type": "seen", "source": "https://t.me/cvedetector/15184", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22614 - WeGIA Open Source Web Manager Stored XSS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-22614 \nPublished : Jan. 13, 2025, 9:15 p.m. | 33\u00a0minutes ago \nDescription : WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scripting (XSS) vulnerability was identified in the `dependente_editarInfoPessoal.php` endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts into the `nome` and `SobrenomeForm`parameters. The injected scripts are stored on the server and executed automatically whenever the affected page is accessed by users, posing a significant security risk. The application fails to properly validate and sanitize user inputs in the `dependente_editarInfoPessoal.php` parameters. This lack of validation allows attackers to inject malicious scripts, which are then stored on the server. Whenever the affected page is accessed, the malicious payload is executed in the victim's browser, potentially compromising the user's data and system. This issue has been addressed in version 3.2.6 and all users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-13T22:56:04.000000Z"}, {"uuid": "06ff9c13-a972-4fd1-afd1-b54b8765bb1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22613", "type": "seen", "source": "https://t.me/cvedetector/15183", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22613 - WeGIA Stored Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-22613 \nPublished : Jan. 13, 2025, 9:15 p.m. | 33\u00a0minutes ago \nDescription : WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scripting (XSS) vulnerability was identified in the `informacao_adicional.php` endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts into the `descricao` parameter. The injected scripts are stored on the server and executed automatically whenever the affected page is accessed by users, posing a significant security risk. The application fails to properly validate and sanitize user inputs in the `informacao_adicional.php` parameter. This lack of validation allows attackers to inject malicious scripts, which are then stored on the server. Whenever the affected page is accessed, the malicious payload is executed in the victim's browser, potentially compromising the user's data and system. This issue has been addressed in version 3.2.6 and all users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-13T22:56:03.000000Z"}, {"uuid": "ad6ce31a-45b0-41fb-9daf-459065f795d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22619", "type": "seen", "source": "https://t.me/cvedetector/15180", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22619 - WeGIA Reflected Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-22619 \nPublished : Jan. 13, 2025, 9:15 p.m. | 33\u00a0minutes ago \nDescription : WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the `editar_permissoes.php` endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts in the `msg_c` parameter. The application fails to validate and sanitize user inputs in the `msg_c` parameter. This lack of validation permits the injection of malicious payloads, which are reflected back to the user's browser in the server's response and executed within the context of the victim's browser. This issue has been addressed in release version 3.2.6. All users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-13T22:55:58.000000Z"}, {"uuid": "b789cebc-7f83-4526-b7d2-a7e90435f9c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22618", "type": "seen", "source": "https://t.me/cvedetector/15179", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22618 - WeGIA Stored Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-22618 \nPublished : Jan. 13, 2025, 9:15 p.m. | 33\u00a0minutes ago \nDescription : WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scripting (XSS) vulnerability was identified in the `adicionar_cargo.php` endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts into the `cargo` parameter. The injected scripts are stored on the server and executed automatically whenever the affected page is accessed by users, posing a significant security risk. The application fails to properly validate and sanitize user inputs in the `adicionar_cargo.php` parameter. This lack of validation allows attackers to inject malicious scripts, which are then stored on the server. Whenever the affected page is accessed, the malicious payload is executed in the victim's browser, potentially compromising the user's data and system. This issue has been addressed in release version 3.2.6 and all users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-13T22:55:57.000000Z"}, {"uuid": "e5a64bbd-b3cf-4886-b7d3-68baab95b6aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22617", "type": "seen", "source": "https://t.me/cvedetector/15178", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22617 - WeGIA Reflected Cross-Site Scripting (XSS) Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-22617 \nPublished : Jan. 13, 2025, 9:15 p.m. | 33\u00a0minutes ago \nDescription : WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the `editar_socio.php` endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts in the `socio` parameter. The application fails to validate and sanitize user inputs in the `socio` parameter. This lack of validation permits the injection of malicious payloads, which are reflected back to the user's browser in the server's response and executed within the context of the victim's browser. This issue has been addressed in version 3.2.7 and all users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-13T22:55:56.000000Z"}, {"uuid": "08a3a7cc-5b20-4676-8659-e48614d95aad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22616", "type": "seen", "source": "https://t.me/cvedetector/15177", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22616 - WeGIA Stored Cross-Site Scripting (XSS) Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-22616 \nPublished : Jan. 13, 2025, 9:15 p.m. | 33\u00a0minutes ago \nDescription : WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scripting (XSS) vulnerability was identified in the `dependente_parentesco_adicionar.php` endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts into the `descricao` parameter. The injected scripts are stored on the server and executed automatically whenever the affected page is accessed by users, posing a significant security risk. The application fails to properly validate and sanitize user inputs in the `dependente_parentesco_adicionar.php` parameter. This lack of validation allows attackers to inject malicious scripts, which are then stored on the server. Whenever the affected page is accessed, the malicious payload is executed in the victim's browser, potentially compromising the user's data and system. This issue has been addressed in version 3.2.6 and all users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-13T22:55:55.000000Z"}, {"uuid": "670b442c-66e9-44df-86df-093dff944f7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22615", "type": "seen", "source": "https://t.me/cvedetector/15176", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22615 - WeGIA Reflected Cross-Site Scripting (XSS) Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-22615 \nPublished : Jan. 13, 2025, 9:15 p.m. | 33\u00a0minutes ago \nDescription : WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the `Cadastro_Atendido.php` endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts in the `cpf` parameter. The application fails to validate and sanitize user inputs in the `cpf` parameter. This lack of validation permits the injection of malicious payloads, which are reflected back to the user's browser in the server's response and executed within the context of the victim's browser. This issue has been addressed in version 3.2.6 and all users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-13T22:55:54.000000Z"}]}