CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Tesigandia: >> Gandia Integra Total >> 4.4.2236.1 Security Vulnerabilities

CVE-2025-41073

Path Traversal vulnerability in version 4.4.2236.1 of TESI Gandia Integra Total. This issue allows an authenticated attacker to download a ZIP file containing files from the server, including those located in parent directories (e.g., ..\..\..), by exploiting the “direstudio” parameter in “/encuestas/integraweb[_v4]/integra/html/view/comprimir.php”.

CVSS Score

6.5

EPSS Score

0.0

Published

2025-10-23

Page 1

Vulnerabilities

Vulnerable Software

Tesigandia: >> Gandia Integra Total >> 4.4.2236.1 Security Vulnerabilities

Products

Pricing

Contact Us