VYPR

Packagist (Composer) package

novosga/novosga

pkg:composer/novosga/novosga

Vulnerabilities (2)

  • CVE-2025-11322LowOct 6, 2025
    affected <= 2.2.12

    A flaw has been found in Mangati NovoSGA up to 2.2.12. The impacted element is an unknown function of the file /novosga.users/new of the component User Creation Page. Executing manipulation of the argument Senha/Confirmação da senha can lead to weak password requirements. The att

  • CVE-2025-10909LowSep 24, 2025
    affected <= 2.2.9

    A security flaw has been discovered in Mangati NovoSGA up to 2.2.9. The impacted element is an unknown function of the file /admin of the component SVG File Handler. Performing manipulation of the argument logoNavbar/logoLogin results in cross site scripting. Remote exploitation