Wegia
This hub aggregates every CVE we track for Wegia, a product in the enterprise software space. Use it to gauge the current risk picture and drill into individual advisories.
187
CVEs tracked
48
Critical
45
High
0
In CISA KEV
Severity distribution
MEDIUM87CRITICAL48HIGH45LOW7
Monthly trend
0
0
0
0
0
4
37
22
13
0
1
9
31
11
5
14
0
2
10
3
8
12
5
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Wegia.
- CVE-2026-45335WeGIA: Middleware whitelist bypass → open redirect via InternoControle.nextPage5.4
- CVE-2026-45027WeGIA: Use of Weak Password Hashing Algorithm (SHA-256, no salt) in html/login.php5.9
- CVE-2026-45026WeGIA: Stored XSS in html/atendido/processo_aceitacao.php6.8
- CVE-2026-45025WeGIA: Stored XSS in html/atendido/etapa_processo.php6.8
- CVE-2026-42872WeGIA: Reflected XSS in listar_arquivos_etapa.php6.1
- CVE-2026-40286WeGIA has Cross-Site Scripting in Controle de Contribuição7.5
- CVE-2026-40285WeGIA has SQL Injection via Session Variable Override in DespachoControle.php8.8
- CVE-2026-40284WeGIA has stored XSS in listar_despachos.php6.8
- CVE-2026-40283WeGIA has stored XSS in profile_paciente.php6.8
- CVE-2026-35475WeGIA - Open Redirect - backup redirection — Unvalidated $_GET['redirect']6.1
- CVE-2026-35474WeGIA - Open Redirect - atualizacao redirection - Unvalidated $_GET['redirect']6.1
- CVE-2026-35473WeGIA - Open Redirect - IentradaControle - listarId() - Unvalidated $_GET['nextPage']6.1
- CVE-2026-35399WeGIA has Stored XSS in backup file names6.1
- CVE-2026-35472WeGIA - Open Redirect - EstoqueControle - listarTodos() - Unvalidated $_GET['nextPage']6.1
- CVE-2026-35398WeGIA - Open Redirect - OrigemControle - listarTodos() & listarId_Nome() - Unvalidated $_GET['nextPage']6.1
Product normalization is registry-driven with AI assist and human review. How it works