What is CVE-2025-24905?

A critical SQL Injection vulnerability has been discovered in WeGIA, a web manager for charitable institutions. This vulnerability allows unauthorized access to sensitive information. Organizations are urged to upgrade to version 3.2.12 immediately.

What is the severity of CVE-2025-24905?

CVE-2025-24905 has a severity rating of CRITICAL with a CVSS base score of 10.

CVE-2025-24905 | Critical Vulnerability in WeGIA

CVE-2025-24905 is a critical SQL Injection vulnerability affecting the WeGIA application, specifically in the `get_codigobarras_cobranca.php` endpoint. This vulnerability allows attackers to execute arbitrary SQL queries, which could lead to the unauthorized access or deletion of sensitive information. The severity of this vulnerability is underscored by its CVSS score of 10, indicating a critical risk to organizations using this application.

Organizations using WeGIA should prioritize remediation, as attackers may leverage this vulnerability to access sensitive data. The issue has been addressed in version 3.2.12, and there are no known workarounds available. Therefore, organizations are urged to upgrade immediately to mitigate potential risks.

Risk to organizations includes the potential for data breaches and loss of sensitive information. Given the critical nature of this vulnerability, it is essential for organizations to act swiftly to ensure their systems are updated.

The vulnerability was published on February 3, 2025, and has been analyzed accordingly. As there is currently no public exploit confirmed, organizations should still treat this vulnerability with high urgency.

Vulnerability Details

The CVE-2025-24905 vulnerability is categorized under the Common Weakness Enumeration (CWE) identifier CWE-89, which pertains to SQL Injection issues. The vulnerability was disclosed by GitHub security advisories and has been assigned a CVSS score of 10, reflecting its critical severity level.

The vulnerability affects all versions of WeGIA prior to version 3.2.12. Organizations should ensure that they are using the latest version to safeguard against this vulnerability.

Technical Analysis

The root cause of this vulnerability lies in improper input validation, allowing unauthorized SQL commands to be executed through the vulnerable endpoint. The attack vector is network-based, requiring no privileges or user interaction, making it particularly dangerous.

The attack complexity is classified as low, meaning that attackers can exploit this vulnerability with minimal effort. The potential impacts include high confidentiality, integrity, and availability risks, as attackers could manipulate or delete sensitive data.

Risk & Impact Analysis

The real-world deployment risk associated with CVE-2025-24905 is significant. Organizations must understand that the implications of such vulnerabilities extend beyond immediate data loss; they can lead to reputational damage and loss of customer trust.

Given the CVSS score of 10, organizations should prioritize patching immediately. Failure to address this vulnerability could result in a severe breach with extensive impacts on operational capabilities and data integrity.

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

This vulnerability affects all versions of WeGIA prior to version 3.2.12. Users are strongly advised to upgrade to this version as soon as possible.

Mitigation & Remediation

Organizations should ensure that they upgrade to version 3.2.12 of WeGIA to mitigate this vulnerability.

In addition to upgrading, implementing configuration hardening and regular security assessments can help protect against similar vulnerabilities in the future. Continuous monitoring of application logs for unusual activities is also recommended.

Detection Guidance

Organizations should monitor logs for unusual SQL query patterns, which may indicate attempts to exploit this vulnerability. Behavioral anomalies in database interactions should also be tracked to detect potential exploitation.

AppSecure Threat Intelligence Insight

The discovery of CVE-2025-24905 highlights the ongoing need for vigilance in application security. The critical nature of this SQL Injection vulnerability emphasizes the importance of secure coding practices and regular security assessments to identify vulnerabilities before they can be exploited.

To further enhance security posture, organizations may consider integrating comprehensive security testing methodologies including penetration testing and continuous security monitoring.

Organizations are encouraged to stay informed about emerging threats and to adopt best practices in vulnerability management, including regular updates to their systems and applications.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2025-24905: Critical Vulnerability in WeGIA