CVE-2025-22133 | nilsonLazarin WeGIA up to 3.2.7 controla_xlsx.php code injection (GHSA-mjgr-2jxv-v8qf)

Inserito da Angelo Barbosa | Gen 8, 2025 | CVE

A vulnerability classified as critical has been found in nilsonLazarin WeGIA up to 3.2.7. This affects an unknown part of the file /WeGIA/html/socio/sistema/controller/controla_xlsx.php. The manipulation leads to code injection.

This vulnerability is uniquely identified as CVE-2025-22133. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-22133 | nilsonLazarin WeGIA up to 3.2.7 controla_xlsx.php code injection (GHSA-mjgr-2jxv-v8qf)

Post correlati

CVE-2023-49555 | YASM 1.3.0.86.g9def nasm-pp.c expand_smacro denial of service (Issue 248)

CVE-2023-39683 | EasyEmail up to 4.12.2 cross site scripting

CVE-2024-11486 | Code4Berry Decoration Management System 1.0 User Permission user_permission.php

CVE-2023-6282 | IceHrm 23.0.0.OS fileupload_page.php cross site scripting