CVE-2025-62359 in WeGIAinfo

Summary

by MITRE • 10/14/2025

WeGIA is an open source web manager with a focus on charitable institutions. Versions 3.4.12 and below contain an SQL Injection vulnerability which was identified in the /pet/profile_pet.php endpoint, specifically in the id_pet parameter. This vulnerability allows attackers to execute arbitrary SQL commands, compromising the confidentiality, integrity, and availability of the database. This issue is fixed in version 3.5.0.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsible

GitHub M

Reservation

09/26/2025

Disclosure

10/14/2025

Moderation

accepted

Entry

VDB-326805

CPE

ready

CWE

CWE-89 (confirmed)

CVSS

9.8 (NVD)

EPSS

0.00049

KEV

Activities

very low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-62359
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-62359
CVE Details	https://www.cvedetails.com/cve/CVE-2025-62359/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!