{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-33991", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-03-24T22:20:06.211Z", "datePublished": "2026-03-27T22:10:51.350Z", "dateUpdated": "2026-03-27T22:10:51.350Z"}, "containers": {"cna": {"title": "WeGIA has SQL Injection in deletar_tag.php", "problemTypes": [{"descriptions": [{"cweId": "CWE-89", "lang": "en", "description": "CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}}], "references": [{"name": "https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-74xm-6wgf-x37j", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-74xm-6wgf-x37j"}], "affected": [{"vendor": "LabRedesCefetRJ", "product": "WeGIA", "versions": [{"version": "< 3.6.7", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-03-27T22:10:51.350Z"}, "descriptions": [{"lang": "en", "value": "WeGIA is a web manager for charitable institutions. Prior to version 3.6.7, the file `html/socio/sistema/deletar_tag.php` uses `extract($_REQUEST)` on line 14 and directly concatenates the `$id_tag` variable into SQL queries on lines 16-17 without prepared statements or sanitization. Version 3.6.7 patches the vulnerability."}], "source": {"advisory": "GHSA-74xm-6wgf-x37j", "discovery": "UNKNOWN"}}}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "WeGIA is a web manager for charitable institutions. Prior to version 3.6.7, the file `html/socio/sistema/deletar_tag.php` uses `extract($_REQUEST)` on line 14 and directly concatenates the `$id_tag` variable into SQL queries on lines 16-17 without prepared statements or sanitization. Version 3.6.7 patches the vulnerability."}], "id": "CVE-2026-33991", "lastModified": "2026-03-30T13:26:07.647", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2026-03-27T23:17:13.913", "references": [{"source": "security-advisories@github.com", "url": "https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-74xm-6wgf-x37j"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-89"}], "source": "security-advisories@github.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,3.6.7)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "WeGIA", "source": "cna", "vendor": "LabRedesCefetRJ"}, "product": "wegia", "vendor": "labredescefetrj"}], "analysis": {"en": {"generated_at": "2026-03-28T06:35:37.567288+00:00", "value": {"mitigation_remediation": ["Upgrade WeGIA to version 3.6.7 or later to eliminate the unsanitized SQL query.", "Verify that the installed version is 3.6.7 or newer by checking the application\u2019s version information or release notes.", "If upgrading immediately is not possible, restrict access to deletar_tag.php so that only trusted administrators can trigger the script, and consider blocking direct GET or POST requests that could supply arbitrary id_tag values."], "summary": {"action": "Patch", "impact": "SQL Injection resulting in unauthorized database access or modification"}, "threat_synthesis": {"affected_systems": "The vulnerability affects all releases of WeGIA prior to version 3.6.7 produced by LabRedesCefetRJ. Version 3.6.7 corrects the issue by removing the unsanitized query construction.", "description_and_impact": "The flaw resides in the deletar_tag.php script of the WeGIA web manager. The code extracts request parameters without validation and concatenates the $id_tag value directly into SQL statements, forming a classic SQL injection point (CWE\u201189). An attacker who can craft a request to this endpoint can read, alter, or delete data in the underlying database, thereby compromising the confidentiality, integrity, and availability of the application\u2019s data.", "risk_and_exploitability": "The CVSS score of 8.8 denotes high severity. The EPSS score is not provided, and the vulnerability is not listed in the CISA KEV catalog, suggesting no publicly documented exploits yet. The attack vector is likely an HTTP request to deletar_tag.php containing a malicious id_tag parameter; if the page requires authentication, only authenticated users can exploit it, but the flaw remains serious for those users."}}}}, "created": "2026-03-29T20:29:28.832283+00:00", "updated": "2026-03-30T06:59:56.240998+00:00", "vendors": ["labredescefetrj", "labredescefetrj$PRODUCT$wegia"]}