{"id":"CVE-2024-57032","details":"WeGIA \u003c 3.2.0 is vulnerable to Incorrect Access Control in controle/control.php. The application does not validate the value of the old password, so it is possible to change the password by placing any value in the senha_antiga field.","modified":"2026-04-10T05:19:30.802075Z","published":"2025-01-17T20:15:28.910Z","references":[{"type":"WEB","url":"https://www.wegia.org/"},{"type":"EVIDENCE","url":"https://github.com/nmmorette/vulnerability-research/blob/main/CVE-2024-57032"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/labredescefetrj/wegia","events":[{"introduced":"0"},{"fixed":"b61623a639441087e1eb0794df69d49122ec4c71"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"3.2.0"}]}}],"versions":["0.9.4-beta","v1.0","v2.0","v2.0-beta","v3.1"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-57032.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}