Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

LabRedesCefetRJ — Vulnerabilities & Security Advisories 168

Browse all 168 CVE security advisories affecting LabRedesCefetRJ. AI-powered Chinese analysis, POCs, and references for each vulnerability.

LabRedesCefetRJ operates as a specialized academic laboratory focused on network research and development, primarily serving educational and experimental purposes within the CefetRJ institutional framework. Despite its non-commercial nature, the entity has accumulated a significant security footprint, with 168 Common Vulnerabilities and Exposures (CVEs) currently on record. Historical analysis reveals that these vulnerabilities predominantly stem from legacy web applications and network management interfaces, frequently involving remote code execution, cross-site scripting, and privilege escalation flaws. These issues often arise from outdated software dependencies and insufficient input validation in internal tools used for network simulation and testing. While no major public data breaches have been widely reported, the high volume of disclosed CVEs indicates persistent challenges in maintaining patch hygiene for experimental systems. The profile suggests a need for rigorous lifecycle management to mitigate risks associated with its research infrastructure.

Top products by LabRedesCefetRJ: WeGIA
CVE IDTitleCVSSSeverityPublished
CVE-2025-27140 WeGIA vulnerable to OS Command Injection at endpoint 'importar_dump.php' parameter 'import' (RCE) — WeGIACWE-78 9.8 -2025-02-24
CVE-2025-27133 WeGIA has SQL Injection endpoint at 'dao/pet/adicionar_tipo_exame.php' parameter 'tipo_exame' — WeGIACWE-89 6.5 -2025-02-24
CVE-2025-27096 SQL Injection endpoint 'html/personalizacao_upload.php' parameter 'id_campo' in WeGIA — WeGIACWE-89 6.5 -2025-02-20
CVE-2025-26605 SQL Injection endpoint 'deletar_cargo.php' parameter 'id_cargo' in WeGIA — WeGIACWE-89 6.5 -2025-02-18
CVE-2025-26606 SQL Injection endpoint 'informacao_adicional.php' parameter 'id_descricao' in WeGIA — WeGIACWE-89 6.5 -2025-02-18
CVE-2025-26607 SQL Injection endpoint 'documento_excluir.php' parameter 'id_funcionario' in WeGIA — WeGIACWE-89 6.5 -2025-02-18
CVE-2025-26608 SQL Injection endpoint 'dependente_docdependente.php' parameter 'id_dependente', 'id_doc' in WeGIA — WeGIACWE-89 6.5 -2025-02-18
CVE-2025-26609 SQL Injection endpoint 'familiar_docfamiliar.php' parameter 'id_dependente', 'id_doc' in WeGIA — WeGIACWE-89 6.5 -2025-02-18
CVE-2025-26610 SQL Injection endpoint 'restaurar_produto_desocultar.php' parameter 'id_produto' in WeGIA — WeGIACWE-89 6.5 -2025-02-18
CVE-2025-26611 SQL Injection endpoint 'remover_produto.php' parameter 'id_produto' in WeGIA — WeGIACWE-89 6.5 -2025-02-18
CVE-2025-26612 SQL Injection endpoint 'adicionar_almoxarife.php' parameter 'id_almoxarifado', 'id_funcionario' in WeGIA — WeGIACWE-89 6.5 -2025-02-18
CVE-2025-26613 OS Command Injection endpoint 'gerenciar_backup.php' parameter 'file' (RCE) in WeGIA — WeGIACWE-78 8.8 -2025-02-18
CVE-2025-26614 SQL Injection endpoint 'deletar_documento.php' parameter 'id_cargo' in WeGIA — WeGIACWE-89 6.5 -2025-02-18
CVE-2025-26615 Path Traversal endpoint 'examples.php' parameter 'src' in WeGIA — WeGIACWE-22 10.0 Critical2025-02-18
CVE-2025-26616 Path Traversal endpoint 'exportar_dump.php' parameter 'file' in WeGIA — WeGIACWE-22 6.5 -2025-02-18
CVE-2025-26617 SQL Injection endpoint 'historico_paciente.php' parameter 'id_fichamedica' in WeGIA — WeGIACWE-89 6.5 -2025-02-18
CVE-2025-24901 SQL Injection endpoint 'deletar_permissao.php' parameter 'c', 'a', 'r' in WeGIA — WeGIACWE-89 8.8 -2025-02-03
CVE-2025-24902 SQL Injection endpoint 'salvar_cargo.php' parameter 'id_cargo' in WeGIA — WeGIACWE-89 8.8 -2025-02-03
CVE-2025-24905 SQL Injection endpoint 'get_codigobarras_cobranca.php' parameter 'codigo' in WeGIA — WeGIACWE-89 8.8 -2025-02-03
CVE-2025-24906 SQL Injection endpoint 'get_detalhes_cobranca.php' parameter 'codigo' in WeGIA — WeGIACWE-89 8.8 -2025-02-03
CVE-2025-24957 SQL Injection endpoint 'get_detalhes_socio.php' parameter 'id_socio' in WeGIA — WeGIACWE-89 8.8 -2025-02-03
CVE-2025-24958 SQL Injection endpoint 'salvar_tag.php' parameter 'id_tag' in WeGIA — WeGIACWE-89 8.8 -2025-02-03
CVE-2025-24020 WeGIA Open Redirect vulnerability — WeGIACWE-601 6.1 -2025-01-21
CVE-2025-23220 WeGIA has a SQL Injection endpoint 'adicionar_raca.php' parameter 'raca' — WeGIACWE-89 9.1 -2025-01-20
CVE-2025-23219 WeGIA has a SQL Injection endpoint 'adicionar_cor.php' parameter 'cor' — WeGIACWE-89 9.1 -2025-01-20
CVE-2025-23218 WeGIA has a SQL Injection endpoint 'adicionar_especie.php' parameter 'especie' — WeGIACWE-89 7.5 -2025-01-20
CVE-2025-23038 Cross-Site Scripting (XSS) Stored endpoint 'remuneracao.php ' parameter 'descricao' in WeGIA — WeGIACWE-79 5.4 -2025-01-13
CVE-2025-23030 Cross-Site Scripting (XSS) Reflected endpoint 'cadastro_funcionario.php' parameter 'cpf' in WeGIA — WeGIACWE-79 6.1 -2025-01-13
CVE-2025-23031 Cross-Site Scripting (XSS) Stored endpoint 'adicionar_alergia.php' parameter 'nome' in WeGIA — WeGIACWE-79 5.4 -2025-01-13
CVE-2025-23032 Cross-Site Scripting (XSS) Stored endpoint 'adicionar_escala.php' parameter 'escala' in WeGIA — WeGIACWE-79 5.4 -2025-01-13

This page lists every published CVE security advisory associated with LabRedesCefetRJ. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.