VYPR
Vendor

Quiter

Products
1
CVEs
11
Across products
11
Status
Private

Products

1

Recent CVEs

11
  • CVE-2025-40717CriJul 8, 2025
    risk 0.64cvss 9.8epss 0.00

    SQL injection vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to retrieve, create, update and delete databases through the pagina.filter.categoria mensaje in /QuiterGatewayWeb/api/v1/sucesospagina.

  • CVE-2025-40716CriJul 8, 2025
    risk 0.64cvss 9.8epss 0.00

    SQL injection vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to retrieve, create, update and delete databases through the suceso.contenido mensaje in /QMSCliente/Sucesos.action.

  • CVE-2025-40715CriJul 8, 2025
    risk 0.64cvss 9.8epss 0.00

    SQL injection vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to retrieve, create, update and delete databases through the campo mensaje in /QISClient/api/v1/sucesospaginas.

  • CVE-2025-40714CriJul 8, 2025
    risk 0.64cvss 9.8epss 0.00

    SQL injection vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to retrieve, create, update and delete databases through the campo id_factura in /FacturaE/listado_facturas_ficha.jsp.

  • CVE-2025-40713CriJul 8, 2025
    risk 0.64cvss 9.8epss 0.00

    SQL injection vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to retrieve, create, update and delete databases through the campo parameter in/FacturaE/BusquedasFacturasSesion.

  • CVE-2025-40712CriJul 8, 2025
    risk 0.64cvss 9.8epss 0.00

    SQL injection vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to retrieve, create, update and delete databases through the id_concesion parameter in /FacturaE/DescargarFactura.

  • CVE-2025-40711CriJul 8, 2025
    risk 0.64cvss 9.8epss 0.00

    SQL injection vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to retrieve, create, update and delete databases through the id_concesion parameter in /FacturaE/VerFacturaPDF.

  • CVE-2025-40718HigJul 8, 2025
    risk 0.49cvss 7.5epss 0.00

    Improper error handling vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to send malformed payloads to generate error messages containing sensitive information.

  • CVE-2025-40720MedJul 8, 2025
    risk 0.40cvss 6.1epss 0.00

    Reflected Cross-site Scripting (XSS) vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending a malicious URL trhough the campo parameter in…

  • CVE-2025-40719MedJul 8, 2025
    risk 0.40cvss 6.1epss 0.00

    Reflected Cross-site Scripting (XSS) vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending a malicious URL trhough the id_concesion parameter in…

  • CVE-2025-40721MedJul 8, 2025
    risk 0.35cvss 5.4epss 0.00

    Reflected Cross-site Scripting (XSS) vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending a malicious URL trhough the id_factura parameter in…