CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-41013

SQL injection vulnerability in TCMAN GIM v11 in version 20250304. This vulnerability allows an attacker to retrieve, create, update, and delete databases by sending a GET request using the 'idmant' parameter in '/PC/frmEPIS.aspx'.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 7.9%

CVSS Severity

CVSS v3 Score 9.8

References

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-tcman-gim-2

Products affected by CVE-2025-41013

Tcman » Gim » Version: 11.0

cpe:2.3:a:tcman:gim:11.0
Tcman » Gim » Version: 8.0

cpe:2.3:a:tcman:gim:8.0
Tcman » Gim » Version: 8.0.1

cpe:2.3:a:tcman:gim:8.0.1
Tcman » Gim » Version: 8.01

cpe:2.3:a:tcman:gim:8.01

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-41013

Products

Pricing

Contact Us