CVE-2025-40671 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

SQL injection vulnerability in AES Multimedia's Gestnet v1.07. This vulnerability allows an attacker to retrieve, create, update and delete databases via the ‘f…
Critical CVSS: 9.3

CVE-2025-40671

SQL injection vulnerability in AES Multimedia's Gestnet v1.07. This vulnerability allows an attacker to retrieve, create, update and delete databases via the ‘fk_remoto_central’ parameter on the ‘/webservices/articles.php’ endpoint.
Vendor
-
Product
-
CWE
CWE-93
Yayın Tarihi
2025-05-26 10:15:20
Güncelleme
2025-05-28 15:01:30
Source Identifier
cve-coordination@incibe.es
KEV Date Added
-

Kategoriler

CWE-93 CRITICAL 2025

Referanslar

https://www.incibe.es/en/incibe-cert/notices/aviso/sql-injection-vulnerability-aes-multimedias-gestnet