Critical severity9.8NVD Advisory· Published Jul 8, 2025· Updated Jun 17, 2026
CVE-2025-40716
CVE-2025-40716
Description
SQL injection vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to retrieve, create, update and delete databases through the suceso.contenido mensaje in /QMSCliente/Sucesos.action.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <4.7.0
- Quiter/Quiter Gateway (Java WAR on Apache Tomcat)v5Range: 0
Patches
Vulnerability mechanics
References
1- www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-quiterweb-autoweb-quiternvdThird Party Advisory
News mentions
0No linked articles in our index yet.