CVE-2025-40887

Name of the Vulnerable Software and Affected Versions Alert functionality (affected versions not specified)

Description A SQL Injection issue exists due to inadequate input validation of a parameter within the Alert functionality. An authenticated user with limited privileges can execute arbitrary SELECT SQL statements against the database management system, potentially leading to unauthorized data disclosure.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.