CVE-2025-40617
29.04.2025, 16:15
SQL injection vulnerability in Bookgy. This vulnerability could allow an attacker to retrieve, create, update and delete databases by sending an HTTP request through the "IDTIPO", "IDPISTA" and "IDSOCIO" parameters in /bkg_seleccionar_hora_ajax.php.
Vendor | Product | Version |
---|---|---|
bookgy | bookgy | - |
𝑥
= Vulnerable software versions