Security Advisory

CVE-2025-41374

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-01 12:29:35

Last updated 2025-08-01 13:23:15

Assigner INCIBE

State PUBLISHED

Description

A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1.2217.3 to v4.4.2236.1. The vulnerability allows an authenticated attacker to retrieve, create, update and delete databases through the idestudio parameter in /encuestas/integraweb[_v4]/integra/html/view/hislistadoacciones.php.

← Browse all CVEs View on cve.org ↗