Cross-Site Request Forgery in WeGIA Software
CVE-2024-53472

Currently unrated

Key Information:

Vendor: WeGIA
Status: Wegia
Vendor: CVE Published:; 5 December 2024

What is CVE-2024-53472?

The WeGIA v3.2.0 software has a vulnerability that enables attackers to exploit Cross-Site Request Forgery (CSRF) conditions. This issue can potentially allow unauthorized actions to be performed on behalf of authenticated users without their consent. If successfully exploited, an attacker could compromise user accounts, manipulate data, or gain unauthorized access to sensitive information within the application. It is crucial for users of WeGIA v3.2.0 to assess their exposure to this vulnerability and implement appropriate security measures.

References

https://www.wegia.org

https://github.com/nilsonLazarin/WeGIA/

https://github.com/nmmorette/vulnerability-research/tree/...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 5, 2024
Vulnerability Reserved
Nov 20, 2024