CVE-2025-27499 | LabRedesCefetRJ WeGIA up to 3.2.9 processa_edicao_socio.php socio_nome cross site scripting (GHSA-v248-mr5r-87pf)

Inserito da Angelo Barbosa | Mar 4, 2025 | CVE

A vulnerability classified as problematic has been found in LabRedesCefetRJ WeGIA up to 3.2.9. This affects an unknown part of the file processa_edicao_socio.php. The manipulation of the argument socio_nome leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-27499. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-27499 | LabRedesCefetRJ WeGIA up to 3.2.9 processa_edicao_socio.php socio_nome cross site scripting (GHSA-v248-mr5r-87pf)

Post correlati

CVE-2024-37139 | Dell PowerProtect DD prior 2.7.7/5.16.0.0/7.7.5.40/7.10.1.30/7.13.1.0 resource control (dsa-2024-219)

CVE-2024-2334 | Template Kit Plugin up to 1.0.14 on WordPress Template Upload cross site scripting

CVE-2024-10749 | ThinkAdmin up to 6.1.67 Plugs.php script uptoken deserialization

CVE-2024-21829 | Intel CPU UEFI Firmware Error input validation (intel-sa-01071)