CVE-2025-2200 | Innovación y Cualificación IcProgreso plugin generar_blocks.php user/id/idGroup/start_date/end_date sql injection
A vulnerability classified as critical was found in Innovación y Cualificación IcProgreso plugin. Affected by this vulnerability is an unknown functionality of the file /report/icprogreso/generar_blocks.php. The manipulation of the argument user/id/idGroup/start_date/end_date leads to sql injection.
This vulnerability is known as CVE-2025-2200. The attack can be launched remotely. There is no exploit available.