Security Advisory

CVE-2025-40618

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-04-29 15:43:11

Last updated 2025-04-29 15:51:07

Assigner INCIBE

State PUBLISHED

Description

SQL injection vulnerability in Bookgy. This vulnerability could allow an attacker to retrieve, create, update and delete databases by sending an HTTP request through the "IDRESERVA" parameter in /bkg_imprimir_comprobante.php

← Browse all CVEs View on cve.org ↗