Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

LabRedesCefetRJ — Vulnerabilities & Security Advisories 168

Browse all 168 CVE security advisories affecting LabRedesCefetRJ. AI-powered Chinese analysis, POCs, and references for each vulnerability.

LabRedesCefetRJ operates as a specialized academic laboratory focused on network research and development, primarily serving educational and experimental purposes within the CefetRJ institutional framework. Despite its non-commercial nature, the entity has accumulated a significant security footprint, with 168 Common Vulnerabilities and Exposures (CVEs) currently on record. Historical analysis reveals that these vulnerabilities predominantly stem from legacy web applications and network management interfaces, frequently involving remote code execution, cross-site scripting, and privilege escalation flaws. These issues often arise from outdated software dependencies and insufficient input validation in internal tools used for network simulation and testing. While no major public data breaches have been widely reported, the high volume of disclosed CVEs indicates persistent challenges in maintaining patch hygiene for experimental systems. The profile suggests a need for rigorous lifecycle management to mitigate risks associated with its research infrastructure.

Top products by LabRedesCefetRJ: WeGIA
CVE IDTitleCVSSSeverityPublished
CVE-2025-53531 WeGIA allows Uncontrolled Resource Consumption via the fid parameter — WeGIACWE-770 7.5AIHighAI2025-07-07
CVE-2025-53530 WeGIA allows Uncontrolled Resource Consumption via the errorstr parameter — WeGIACWE-770 7.5AIHighAI2025-07-07
CVE-2025-53529 WeGIA allows SQL Injection in html/funcionario/profile_funcionario.php (id_funcionario parameter) — WeGIACWE-89 9.8 Critical2025-07-07
CVE-2025-53527 WeGIA allows Time-Based Blind SQL Injection in the relatorio_geracao.php endpoint — WeGIACWE-89 9.8AICriticalAI2025-07-07
CVE-2025-53526 WeGIA allows Stored XSS attacks in novo_memorando.php — WeGIACWE-79 6.1AIMediumAI2025-07-07
CVE-2025-53525 WebGia allows Cross-Site Scripting (XSS) in profile_familiar.php via the id_dependente parameter — WeGIACWE-79 6.1AIMediumAI2025-07-07
CVE-2025-53377 WebGia allows Cross-Site Scripting (XSS) in cadastro_dependente_pessoa_nova.php via the id_funcionario parameter — WeGIACWE-79 6.1AIMediumAI2025-07-07
CVE-2025-53091 WeGIA has Unauthenticated Time-Based Blind SQL Injection in almox Parameter — WeGIACWE-89 9.8AICriticalAI2025-06-27
CVE-2025-6699 LabRedesCefetRJ WeGIA Cadastro de Funcionário cadastro_funcionario.php cross site scripting — WeGIACWE-79 3.5 Low2025-06-26
CVE-2025-6698 LabRedesCefetRJ WeGIA Adicionar tipo adicionar_tipoSaida.php cross site scripting — WeGIACWE-79 3.5 Low2025-06-26
CVE-2025-6697 LabRedesCefetRJ WeGIA Adicionar tipo adicionar_tipoEntrada.php cross site scripting — WeGIACWE-79 3.5 Low2025-06-26
CVE-2025-6696 LabRedesCefetRJ WeGIA Cadastro de Atendio Cadastro_Atendido.php cross site scripting — WeGIACWE-79 3.5 Low2025-06-26
CVE-2025-6695 LabRedesCefetRJ WeGIA Additional Categoria adicionar_categoria.php cross site scripting — WeGIACWE-79 3.5 Low2025-06-26
CVE-2025-6694 LabRedesCefetRJ WeGIA Adicionar Unidade adicionar_unidade.php cross site scripting — WeGIACWE-79 3.5 Low2025-06-26
CVE-2025-52474 WeGIA SQL Injection Vulnerability in id Parameter on control.php Endpoint — WeGIACWE-89 9.1AICriticalAI2025-06-19
CVE-2025-50201 WeGIA OS Command Injection in debug_info.php parameter 'branch' — WeGIACWE-78 9.8 Critical2025-06-19
CVE-2025-46828 Unauthenticated SQL Injection on get_socios.php endpoint — WeGIACWE-89 9.8AICriticalAI2025-05-07
CVE-2025-30367 WeGIA SQL Injection Vulnerability in nextPage Parameter on control.php Endpoint — WeGIACWE-89 9.1AICriticalAI2025-03-27
CVE-2025-30366 WeGIA vulnerable to Stored XSS in personalizacao.php — WeGIACWE-79 5.4AIMediumAI2025-03-27
CVE-2025-30365 SQL Injection in query_geracao_auto.php — WeGIACWE-89 9.8AICriticalAI2025-03-27
CVE-2025-30364 WeGIA vulnerable to SQL Injection (Blind Time-Based) in remuneracao.php parameter id_funcionario — WeGIACWE-89 9.8AICriticalAI2025-03-27
CVE-2025-30363 WeGIA vulnerable to Stored XSS in documentos_funcionario.php parameter dados_addInfo — WeGIACWE-79 5.4AIMediumAI2025-03-27
CVE-2025-30362 WeGIA vulnerable to Stored XSS in documentos_funcionario.php parameter id — WeGIACWE-79 5.4AIMediumAI2025-03-27
CVE-2025-30361 WeGIA Vulnerable to Broken Authentication - Old Password Validation — WeGIACWE-287 9.1AICriticalAI2025-03-27
CVE-2025-29782 WeGIA Cross-Site Scripting (XSS) Stored in endpoint `adicionar_tipo_docs_atendido.php` parameter `tipo` — WeGIACWE-79 5.4 -2025-03-14
CVE-2025-27499 WeGIA has a stored Cross-Site Scripting (XSS) in 'processa_edicao_socio.php' via the 'socio_nome' parameter — WeGIACWE-79 5.4 -2025-03-03
CVE-2025-27419 Denial of Service (DoS) in WeGIA due to Recursive Crawling of Dynamic URLs — WeGIACWE-770 7.5 -2025-03-03
CVE-2025-27420 WeGIA contains a Stored Cross-Site Scripting (XSS) in 'atendido_parentesco_adicionar.php' via the 'descricao' parameter — WeGIACWE-79 5.4 -2025-03-03
CVE-2025-27418 WeGIA contains a Stored Cross-Site Scripting (XSS) in 'adicionar_tipo_atendido.php' via the 'tipo' parameter — WeGIACWE-79 5.4 -2025-03-03
CVE-2025-27417 WeGIA Contains a Stored Cross-Site Scripting (XSS) in 'adicionar_status_atendido.php' via the 'status' parameter — WeGIACWE-79 5.4 -2025-03-03

This page lists every published CVE security advisory associated with LabRedesCefetRJ. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.