LOWCVE-2025-6695CVSS 3.5

CVE-2025-6695: XSS in WeGIA 3.4.0

Platform

php

Component

pocvuldb

Fixed in

3.4.1

AI Confidence: highNVDEPSS 0.1%Reviewed: May 2026

View on NVD

Save

CVE-2025-6695 is a cross-site scripting (XSS) vulnerability affecting WeGIA versions 3.4.0 through 3.4.0. This flaw allows an attacker to inject malicious scripts into the application, potentially compromising user sessions and data. The vulnerability resides in the processing of the 'Insira a nova categoria' argument within the /html/matPat/adicionar_categoria.php file. A patch is available in version 3.4.1.

Impact and Attack Scenarios

Successful exploitation of CVE-2025-6695 allows an attacker to execute arbitrary JavaScript code within the context of a user's browser session. This can lead to various malicious outcomes, including session hijacking, credential theft, and defacement of the WeGIA interface. The attacker could potentially steal sensitive information entered by users, redirect them to malicious websites, or even gain control of the application server if the user has sufficient privileges. Given the remote accessibility of the vulnerability, the blast radius extends to all users interacting with the affected WeGIA instance.

Exploitation Context

CVE-2025-6695 has been publicly disclosed, increasing the likelihood of exploitation. While the CVSS score is LOW, the ease of exploitation and potential impact warrant attention. No known active campaigns targeting this vulnerability have been reported as of the publication date. The vulnerability is not currently listed on the CISA KEV catalog.

Threat Intelligence

Exploit Status

Proof of ConceptUnknown

CISA KEVNO

Internet ExposureHigh

EPSS

0.07% (23% percentile)

CISA SSVC

Exploitationpoc

Automatableno

Technical Impactpartial

CVSS Vector

Affected Software

Componentpocvuldb

VendorLabRedesCefetRJ

Affected rangeFixed in

3.4.0 – 3.4.03.4.1

Weakness Classification (CWE)

CWE-79 CWE-94

Timeline

Reserved2025-06-26
Published2025-06-26
EPSS updated2026-03-23

Mitigation and Workarounds

The primary mitigation for CVE-2025-6695 is to upgrade WeGIA to version 3.4.1 or later, which contains the fix. If immediate upgrading is not possible, consider implementing input validation and sanitization on the 'Insira a nova categoria' argument to prevent malicious code injection. Web application firewalls (WAFs) configured to detect and block XSS attacks can provide an additional layer of defense. Regularly review and update your WAF rules to ensure they are effective against emerging threats. After upgrading, confirm the vulnerability is resolved by attempting to inject a simple XSS payload into the 'Insira a nova categoria' field and verifying that it is properly sanitized.

How to fix

Update to a patched version or implement input sanitization measures in the adicionar_categoria.php file to prevent XSS code execution. Validate and escape user input in the 'Insira a nova categoria' parameter before displaying it on the page.

CVE Security Newsletter

Vulnerability analysis and critical alerts directly to your inbox.

Frequently asked questions

What is CVE-2025-6695 — XSS in WeGIA 3.4.0?

CVE-2025-6695 is a cross-site scripting (XSS) vulnerability in WeGIA versions 3.4.0–3.4.0, allowing attackers to inject malicious scripts.

Am I affected by CVE-2025-6695 in WeGIA 3.4.0?

Yes, if you are using WeGIA version 3.4.0, you are affected by this vulnerability.

How do I fix CVE-2025-6695 in WeGIA 3.4.0?

Upgrade WeGIA to version 3.4.1 or later to resolve the vulnerability. Input validation is a temporary workaround.

Is CVE-2025-6695 being actively exploited?

While no active campaigns are confirmed, the vulnerability is publicly disclosed and could be exploited.

Where can I find the official WeGIA advisory for CVE-2025-6695?

Contact LabRedesCefetRJ directly, as they have not responded to early disclosure attempts.