CVE-2026-40284 | LabRedesCefetRJ WeGIA up to 3.6.9 Destinatário cross site scripting (GHSA-mccp-8446-phw5)

Inserito da Angelo Barbosa | Apr 17, 2026 | CVE

A vulnerability was found in LabRedesCefetRJ WeGIA up to 3.6.9 and classified as problematic. Affected by this vulnerability is an unknown functionality. Executing a manipulation of the argument Destinatário can lead to cross site scripting.

This vulnerability appears as CVE-2026-40284. The attack may be performed from remote. There is no available exploit.

It is suggested to upgrade the affected component.

CVE-2026-40284 | LabRedesCefetRJ WeGIA up to 3.6.9 Destinatário cross site scripting (GHSA-mccp-8446-phw5)

Post correlati

CVE-2021-38120 | OpenText NetIQ Advance Authentication up to 6.3.5.0 command injection

CVE-2024-11431 | Ragic Shortcode Plugin up to 1.2 on WordPress cross site scripting

CVE-2024-13787 | designthemes VEDA Plugin up to 4.2 on WordPress veda_backup_and_restore_action deserialization

CVE-2024-2730 | Mautic up to 4.4.9 Landing Page direct request