2025-08-01 12:29:13
INCIBE
PUBLISHED
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1.2217.3 to v4.4.2236.1. The vulnerability allows an authenticated attacker to retrieve, create, update and delete databases through the idestudio parameter in /encuestas/integraweb[_v4]/integra/html/view/informe_campo_entrevistas.php.