Critical severity9.8NVD Advisory· Published Mar 22, 2024· Updated Jun 17, 2026
CVE-2024-2723
CVE-2024-2723
Description
SQL injection vulnerability in the CIGESv2 system, through /ajaxSubServicios.php, in the 'idServicio' parameter. The exploitation of this vulnerability could allow a remote user to retrieve all data stored in the database by sending a specially crafted SQL query.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Ciges/CIGESv2v5Range: CIGESv2
Patches
Vulnerability mechanics
References
1- www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-cigesv2-systemnvdThird Party Advisory
News mentions
0No linked articles in our index yet.