Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2025-30364

WeGIA is a Web manager for charitable institutions. A SQL Injection vulnerability was identified in versions prior to 3.2.8 in the endpoint /WeGIA/html/funcionario/remuneracao.php, in the id_funcionario parameter. This vulnerability allows the execution of arbitrary SQL commands, which can compromise the confidentiality, integrity, and availability of stored data. Version 3.2.8 fixes the issue.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 23.6%
CVSS Severity
CVSS v3 Score 9.8
Products affected by CVE-2025-30364
  • Wegia » Wegia » Version: 0.9.4
    cpe:2.3:a:wegia:wegia:0.9.4
  • Wegia » Wegia » Version: 1.0
    cpe:2.3:a:wegia:wegia:1.0
  • Wegia » Wegia » Version: 2.0
    cpe:2.3:a:wegia:wegia:2.0
  • Wegia » Wegia » Version: 3.0
    cpe:2.3:a:wegia:wegia:3.0
  • Wegia » Wegia » Version: 3.1
    cpe:2.3:a:wegia:wegia:3.1
  • Wegia » Wegia » Version: 3.2.0
    cpe:2.3:a:wegia:wegia:3.2.0
  • Wegia » Wegia » Version: 3.2.6
    cpe:2.3:a:wegia:wegia:3.2.6
  • Wegia » Wegia » Version: 3.2.7
    cpe:2.3:a:wegia:wegia:3.2.7


Products
Pricing
Contact Us

Shodan ® - All rights reserved