DIAL CentrosNET App SQL注入漏洞

DIAL CentrosNET App is a mobile application for students, teachers and school administrators from the Spanish company DIAL. A SQL injection vulnerability exists in DIAL CentrosNET App version v2.64, which stems from incorrect manipulation of the parameter ultralogin in the file...

PT-2025-45415

Name of the Vulnerable Software and Affected Versions DIAL CentrosNet versions prior to 2.65 Description A SQL injection issue exists in DIAL's CentrosNet. An attacker can retrieve, create, update, and delete databases by sending POST and GET requests. The vulnerability is present in the...