Security Advisory

CVE-2025-40712

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-07-08 11:33:40

Last updated 2025-08-07 16:06:16

Assigner INCIBE

State PUBLISHED

Description

SQL injection vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to retrieve, create, update and delete databases through the id_concesion parameter in /<Client>FacturaE/DescargarFactura.

← Browse all CVEs View on cve.org ↗