Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-53821

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. An Open Redirect vulnerability exists in the web application prior to version 3.4.5. The control.php endpoint allows to specify an arbitrary URL via the `nextPage` parameter, leading to an uncontrolled redirection. Version 3.4.5 contains a fix for the issue.

Published

2025-07-14T23:15:23.980

Last Modified

2025-07-18T20:08:33.617

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 4.7 (MEDIUM)

Weaknesses

Type: Secondary
CWE-601

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	wegia	wegia	< 3.4.5	Yes

References

https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-f5c2-jmm6-v2c5 Exploit, Vendor Advisory ([email protected])
https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-f5c2-jmm6-v2c5 Exploit, Vendor Advisory (134c704f-9b21-4f2e-91b3-4a467353bcc0)