https://db.gcve.eu/sightings/feed 2026-05-01T21:39:03.658928+00:00 Vulnerability-Lookup info@gcve.eu python-feedgen Contains only the most 10 recent sightings. https://db.gcve.eu/sighting/f4e37de9-36f5-42ba-bfcc-758980280420/export 2026-05-01T21:39:04.050959+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "f4e37de9-36f5-42ba-bfcc-758980280420", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23218", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113861471488726196", "content": "", "creation_timestamp": "2025-01-20T15:49:36.417525Z"} 2025-01-20T15:49:36.417525+00:00 https://db.gcve.eu/sighting/687aa19b-9870-4b34-8405-bb8bf72b1a41/export 2026-05-01T21:39:04.050891+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "687aa19b-9870-4b34-8405-bb8bf72b1a41", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23218", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2365", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23218\n\ud83d\udd39 Description: WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerability was identified in the WeGIA application, specifically in the adicionar_especie.php endpoint. This vulnerability allows attackers to execute arbitrary SQL commands in the database, allowing unauthorized access to sensitive information. During the exploit, it was possible to perform a complete dump of the application's database, highlighting the severity of the flaw. This vulnerability is fixed in 3.2.10.\n\ud83d\udccf Published: 2025-01-20T15:45:52.680Z\n\ud83d\udccf Modified: 2025-01-20T15:45:52.680Z\n\ud83d\udd17 References:\n1. https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-xhv4-88gx-hvgh\n2. https://github.com/LabRedesCefetRJ/WeGIA/commit/7465f785651c0cff65059bba96b015ab54235de4", "creation_timestamp": "2025-01-20T16:01:44.000000Z"} 2025-01-20T16:01:44+00:00 https://db.gcve.eu/sighting/b734f8a9-68b6-4bf2-a9ed-5021d196ecaf/export 2026-05-01T21:39:04.050834+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "b734f8a9-68b6-4bf2-a9ed-5021d196ecaf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23218", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lg6qdqbt3j2n", "content": "", "creation_timestamp": "2025-01-20T16:15:59.519052Z"} 2025-01-20T16:15:59.519052+00:00 https://db.gcve.eu/sighting/da531768-03f8-481f-bb7a-82b05e212d20/export 2026-05-01T21:39:04.050783+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "da531768-03f8-481f-bb7a-82b05e212d20", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23218", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lg6sigyoal2k", "content": "", "creation_timestamp": "2025-01-20T16:54:27.896429Z"} 2025-01-20T16:54:27.896429+00:00 https://db.gcve.eu/sighting/9dae2177-0358-457c-9a9d-ddc8f0bc71d7/export 2026-05-01T21:39:04.050717+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "9dae2177-0358-457c-9a9d-ddc8f0bc71d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23218", "type": "seen", "source": "https://t.me/cvedetector/15892", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-23218 - WeGIA SQL Injection Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-23218 \nPublished : Jan. 20, 2025, 4:15 p.m. | 43\u00a0minutes ago \nDescription : WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerability was identified in the WeGIA application, specifically in the adicionar_especie.php endpoint. This vulnerability allows attackers to execute arbitrary SQL commands in the database, allowing unauthorized access to sensitive information. During the exploit, it was possible to perform a complete dump of the application's database, highlighting the severity of the flaw. This vulnerability is fixed in 3.2.10. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"20 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-20T18:23:16.000000Z"} 2025-01-20T18:23:16+00:00 https://db.gcve.eu/sighting/bee50210-8037-4581-bc1d-17f4665f9155/export 2026-05-01T21:39:04.050632+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "bee50210-8037-4581-bc1d-17f4665f9155", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23218", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113867128534299416", "content": "", "creation_timestamp": "2025-01-21T15:48:17.707761Z"} 2025-01-21T15:48:17.707761+00:00 https://db.gcve.eu/sighting/e4493d97-9d90-4b1a-accb-96c2da17baf0/export 2026-05-01T21:39:04.048732+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "e4493d97-9d90-4b1a-accb-96c2da17baf0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23218", "type": "seen", "source": "Telegram/ycJJ40upQQHFCPrjQqS1KyUsWYsMMwSiWg8vSySp2rDnsb9e", "content": "", "creation_timestamp": "2025-02-18T21:38:56.000000Z"} 2025-02-18T21:38:56+00:00