Critical severity9.8NVD Advisory· Published Jul 8, 2025· Updated Jun 17, 2026
CVE-2025-40717
CVE-2025-40717
Description
SQL injection vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to retrieve, create, update and delete databases through the pagina.filter.categoria mensaje in /QuiterGatewayWeb/api/v1/sucesospagina.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <4.7.0
- Quiter/Quiter Gateway (Java WAR on Apache Tomcat)v5Range: 0
Patches
Vulnerability mechanics
References
1- www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-quiterweb-autoweb-quiternvdThird Party Advisory
News mentions
0No linked articles in our index yet.