WeGIA Stored Cross-Site Scripting Vulnerability in Dependente Docdependente.php Endpoint

A stored cross-site scripting vulnerability has been identified in the WeGIA application, specifically in versions prior to 3.4.7. The issue resides in the dependente_docdependente.php endpoint, where the nome parameter is vulnerable to script injection. Malicious scripts injected into this parameter are stored on the server and executed automatically when the affected page is accessed by users, creating a significant security risk.

Impact

Exploitation of this vulnerability allows for stored cross-site scripting, where injected scripts are executed in the context of the user accessing the page, potentially leading to session hijacking, credential theft, and other malicious actions as described in the advisory.

Reproduction

To reproduce this vulnerability, send a POST request to the dependente_docdependente.php endpoint with a payload containing a script tag, such as <script>alert(1)</script>, injected into the nome parameter. The application does not properly sanitize this input, allowing the script to be executed when the page is accessed.

Remediation

Users can upgrade to WeGIA version 3.4.7 or later, where this vulnerability has been patched.