Volerion logoVolerion
Volerion logoVolerion

WeGIA Reflected Cross-Site Scripting Vulnerability in novo_memorandoo.php Endpoint

Vulnerability

A reflected cross-site scripting vulnerability has been identified in WeGIA versions through 3.6.6. The issue resides in the novo_memorandoo.php endpoint, where the sccs GET parameter can be exploited to inject arbitrary JavaScript. The injected script is echoed back in the HTML response without any sanitization or encoding. This vulnerability allows attackers to execute scripts in the context of the user's browser session.

Impact

Exploitation of this vulnerability allows for reflected cross-site scripting, where an attacker can execute scripts in the context of an authenticated user's session. This could lead to stealing session cookies, performing unauthorized actions on behalf of the user, or redirecting the user to a malicious website.

Reproduction

To reproduce this vulnerability, send a request to the novo_memorandoo.php endpoint with the msg parameter set to 'success' and the sccs parameter containing the injected JavaScript, such as a script tag with a JavaScript payload. The injected script will be executed in the user's browser.

Remediation

Users can upgrade to WeGIA version 3.6.7 to address this vulnerability.

Added: Mar 20, 2026, 11:21 AM
Updated: Mar 20, 2026, 11:21 AM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
3.5
exploitability
5.6
remediation
7.7
relevance
4.2
threat
6.4
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.