Critical severity9.8NVD Advisory· Published Jul 8, 2025· Updated Jun 17, 2026
CVE-2025-40714
CVE-2025-40714
Description
SQL injection vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to retrieve, create, update and delete databases through the campo id_factura in /FacturaE/listado_facturas_ficha.jsp.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <4.7.0
- Quiter/Quiter Gateway (Java WAR on Apache Tomcat)v5Range: 0
Patches
Vulnerability mechanics
References
1- www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-quiterweb-autoweb-quiternvdThird Party Advisory
News mentions
0No linked articles in our index yet.