CVE-2025-58453 is a high-severity SQL Injection vulnerability (CWE-89) affecting the WeGIA web management system developed by LabRedesCefetRJ, specifically versions prior to 3.4.11. The vulnerability exists in the /WeGIA/html/memorando/exibe_anexo.php endpoint, within the id_anexo parameter. This parameter is improperly sanitized, allowing an attacker to inject malicious SQL commands. Exploitation does not require authentication or user interaction, and can be performed remotely over the network. Successful exploitation enables an attacker to execute arbitrary SQL queries against the backend database, potentially leading to unauthorized access to sensitive information, data leakage, and data integrity compromise. The vulnerability has a CVSS 4.0 base score of 8.9, reflecting its high impact on confidentiality, integrity, and availability. Although no known exploits are currently reported in the wild, the ease of exploitation and the critical nature of the vulnerability make it a significant threat. The vendor has released version 3.4.11 which patches this issue by properly neutralizing special elements in the id_anexo parameter to prevent SQL injection attacks.

For European organizations using WeGIA to manage charitable institutions or similar entities, this vulnerability poses a serious risk. Exploitation could lead to unauthorized disclosure of sensitive donor, beneficiary, or organizational data, potentially violating GDPR and other data protection regulations. Data integrity could be compromised, affecting operational reliability and trustworthiness of records. Additionally, attackers could disrupt service availability by executing destructive SQL commands. The reputational damage and potential regulatory fines resulting from data breaches could be significant. Since WeGIA is specialized software, organizations relying on it for critical management functions may face operational disruptions if exploited. The lack of authentication requirement for exploitation increases the attack surface, making remote attacks feasible without insider access.

Organizations should immediately upgrade WeGIA installations to version 3.4.11 or later, which contains the official patch for this vulnerability. Until the upgrade is applied, network-level protections such as web application firewalls (WAFs) should be configured to detect and block SQL injection attempts targeting the id_anexo parameter. Input validation and parameterized queries should be enforced in any custom integrations or scripts interacting with WeGIA. Regular security audits and code reviews should be conducted to identify similar injection flaws. Monitoring database logs for suspicious queries and implementing least privilege access controls on the database can limit the impact of potential exploitation. Additionally, organizations should ensure timely application of security updates and maintain an incident response plan to quickly address any exploitation attempts.