CVE-2025-58745 | LabRedesCefetRJ WeGIA up to 3.4.10 PHP File controla_xlsx.php code injection (GHSA-hq96-gvmx-qrwp)

A vulnerability was found in LabRedesCefetRJ WeGIA up to 3.4.10. It has been declared as critical. Affected by this issue is some unknown functionality of the file /html/socio/sistema/controller/controla_xlsx.php of the component PHP File Handler. Such manipulation leads to code injection.

This vulnerability is documented as CVE-2025-58745. The attack can be executed remotely. There is not any exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More