{"id":67227,"date":"2025-08-01T17:31:46","date_gmt":"2025-08-01T14:01:46","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2025-41376-gandia-integra-total-tesi-sql-injection-vulnerability\/"},"modified":"2025-08-01T17:31:46","modified_gmt":"2025-08-01T14:01:46","slug":"cve-2025-41376-gandia-integra-total-tesi-sql-injection-vulnerability","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2025-41376-gandia-integra-total-tesi-sql-injection-vulnerability\/","title":{"rendered":"CVE-2025-41376 &#8211; Gandia Integra Total TESI SQL Injection Vulnerability"},"content":{"rendered":"<p><strong>CVE ID : <\/strong>CVE-2025-41376<br \/>\n<br \/>\n<strong>Published : <\/strong> Aug. 1, 2025, 1:15 p.m. | 22\u00a0minutes ago<br \/>\n<br \/>\n<strong>Description : <\/strong>A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1.2217.3 to v4.4.2236.1. The vulnerability allows an authenticated attacker to retrieve, create, update and delete databases through the &#8216;idestudio&#8217; parameter in \/encuestas\/integraweb[_v4]\/integra\/html\/view\/consultacuotasred.php.<br \/>\n<br \/>\n<strong>Severity:<\/strong> 0.0 | NA<br \/>\n<br \/>\nVisit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID : CVE-2025-41376 Published : Aug. 1, 2025, 1:15 p.m. | 22\u00a0minutes ago Description : A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1.2217.3 to v4.4.2236.1. The vulnerability allows an authenticated attacker to retrieve, create, update and delete databases through the &#8216;idestudio&#8217; parameter in \/encuestas\/integraweb[_v4]\/integra\/html\/view\/consultacuotasred.php. Severity: 0.0 &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-67227","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/67227","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=67227"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/67227\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=67227"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=67227"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=67227"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}