Stored Cross-Site Scripting Vulnerability in WeGIA Payment Configuration
CVE-2024-53471
Currently unrated
What is CVE-2024-53471?
The WeGIA platform version 3.2.0 contains multiple stored cross-site scripting vulnerabilities in the '/configuracao/meio_pagamento.php' component. These vulnerabilities allow attackers to inject malicious scripts through manipulated payloads in the 'id' or 'name' parameters. Successful exploitation can lead to the execution of arbitrary web scripts or HTML, posing significant risks to user security and data integrity.