Turnkeylinux: Security Vulnerabilities
Support Incident Tracker (aka SiT! or SiTracker) 3.67 p2 allows post-authentication SQL injection via the site_edit.php typeid or site parameter, the search_incidents_advanced.php search_title parameter, or the report_qbe.php criteriafield parameter.
CVSS Score
7.2
EPSS Score
0.004
Published
2020-06-26