CVE-2025-40721 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Reflected Cross-site Scripting (XSS) vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to execute Java…
Medium CVSS: 5.1

CVE-2025-40721

Reflected Cross-site Scripting (XSS) vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending a malicious URL trhough the id_factura parameter in /<Client>FacturaE/listado_facturas_ficha.jsp.
Vendor
Quiter
Product
Quiter Gateway
CWE
CWE-79
Yayın Tarihi
2025-07-08 12:15:23
Güncelleme
2025-10-18 01:30:40
Source Identifier
cve-coordination@incibe.es
KEV Date Added
-

Kategoriler

CWE-79 Quiter Gateway MEDIUM Quiter 2025

Referanslar

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-quiterweb-autoweb-quiter