CVE-2025-40623

Vulnerability Description

SQL injection in TCMAN's GIM v11. This vulnerability allows an unauthenticated attacker to inject an SQL statement to obtain, update and delete all information in the database. This vulnerability was found in each of the following parameters according to the vulnerability identifier ‘Sender’ and “email” parameters of the ‘createNotificationAndroid’ endpoint.

Vulnerability Details

Published Date

May 06, 2025

Last Modified

May 13, 2025

Source

NVD

CVE-2025-40623

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment