VYPR

Novosga

by Novosga

Source repositories

CVEs (2)

  • CVE-2025-11322LowOct 6, 2025
    risk 0.24cvss 3.7epss 0.00

    A flaw has been found in Mangati NovoSGA up to 2.2.12. The impacted element is an unknown function of the file /novosga.users/new of the component User Creation Page. Executing manipulation of the argument Senha/Confirmação da senha can lead to weak password requirements. The…

  • CVE-2025-10909LowSep 24, 2025
    risk 0.16cvss 2.4epss 0.00

    A security flaw has been discovered in Mangati NovoSGA up to 2.2.9. The impacted element is an unknown function of the file /admin of the component SVG File Handler. Performing manipulation of the argument logoNavbar/logoLogin results in cross site scripting. Remote exploitation…