Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-40715

SQL injection vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to retrieve, create, update and delete databases through the campo mensaje in /QISClient/api/v1/sucesospaginas.

Published

2025-07-08T12:15:22.513

Last Modified

2025-07-08T16:18:14.207

Status

Awaiting Analysis

Source

[email protected]

Severity

Weaknesses

Type: Primary
CWE-89

Affected Vendors & Products

References

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-quiterweb-autoweb-quiter ([email protected])