Unrated severityNVD Advisory· Published Aug 1, 2025· Updated Aug 1, 2025
SQL injection vulnerability in Gandia Integra Total
CVE-2025-41372
Description
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1.2217.3 to v4.4.2236.1. The vulnerability allows an authenticated attacker to retrieve, create, update and delete databases through the 'idestudio' parameter in /encuestas/integraweb[_v4]/integra/html/view/informe_campo_entrevistas.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2>=2.1.2217.3, <=4.4.2236.1+ 1 more
- (no CPE)range: >=2.1.2217.3, <=4.4.2236.1
- (no CPE)range: 2.1.2217.3
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.