Quiter

Quiter Gateway

11 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2025-40721

  • EPSS 0.02%
  • Veröffentlicht 08.07.2025 11:43:24
  • Zuletzt bearbeitet 18.10.2025 01:30:40

Reflected Cross-site Scripting (XSS) vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending a malicious URL trhough the id_factura para...

6.1

CVE-2025-40720

  • EPSS 0.03%
  • Veröffentlicht 08.07.2025 11:43:06
  • Zuletzt bearbeitet 18.10.2025 01:32:26

Reflected Cross-site Scripting (XSS) vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending a malicious URL trhough the campo parameter...

6.1

CVE-2025-40719

  • EPSS 0.03%
  • Veröffentlicht 08.07.2025 11:42:48
  • Zuletzt bearbeitet 18.10.2025 01:33:16

Reflected Cross-site Scripting (XSS) vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending a malicious URL trhough the id_concesion pa...

7.5

CVE-2025-40718

  • EPSS 0.05%
  • Veröffentlicht 08.07.2025 11:41:04
  • Zuletzt bearbeitet 18.10.2025 01:34:07

Improper error handling vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to send malformed payloads to generate error messages containing sensitive information.

9.8

CVE-2025-40717

  • EPSS 0.04%
  • Veröffentlicht 08.07.2025 11:37:27
  • Zuletzt bearbeitet 18.10.2025 01:37:55

SQL injection vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to retrieve, create, update and delete databases through the pagina.filter.categoria mensaje in /QuiterGatewayWeb/api/v1/sucesos...

9.8

CVE-2025-40716

  • EPSS 0.04%
  • Veröffentlicht 08.07.2025 11:36:53
  • Zuletzt bearbeitet 18.10.2025 01:38:12

SQL injection vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to retrieve, create, update and delete databases through the suceso.contenido mensaje in /QMSCliente/Sucesos.action.

9.8

CVE-2025-40715

  • EPSS 0.04%
  • Veröffentlicht 08.07.2025 11:36:14
  • Zuletzt bearbeitet 18.10.2025 01:39:23

SQL injection vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to retrieve, create, update and delete databases through the campo mensaje in /QISClient/api/v1/sucesospaginas.

9.8

CVE-2025-40714

  • EPSS 0.04%
  • Veröffentlicht 08.07.2025 11:35:53
  • Zuletzt bearbeitet 15.10.2025 19:20:03

SQL injection vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to retrieve, create, update and delete databases through the campo id_factura in /<Client>FacturaE/listado_facturas_ficha.jsp.

9.8

CVE-2025-40713

  • EPSS 0.04%
  • Veröffentlicht 08.07.2025 11:35:31
  • Zuletzt bearbeitet 15.10.2025 19:32:05

SQL injection vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to retrieve, create, update and delete databases through the campo parameter in/<Client>FacturaE/BusquedasFacturasSesion.

9.8

CVE-2025-40712

  • EPSS 0.04%
  • Veröffentlicht 08.07.2025 11:33:40
  • Zuletzt bearbeitet 15.10.2025 19:32:41

SQL injection vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to retrieve, create, update and delete databases through the id_concesion parameter in /<Client>FacturaE/DescargarFactura.