2023-10-04 15:04:11
INCIBE
PUBLISHED
TCMAN GIM v8.0.1 is vulnerable to a SQL injection via the SqlWhere parameter inside the function BuscarESM. The exploitation of this vulnerability might allow a remote attacker to directly interact with the database.