geraldoalcantara/CVE-2023-49970

Releases0

Customer Support System 1.0 - SQL Injection Vulnerability in the "subject" Parameter During "save_ticket" Operation

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-49970 ↗	Mar 5, 2024Tuesday, 5 March 2024, 00:15	9.8 CRITICAL	—
Customer Support System v1 was discovered to contain a SQL injection vulnerability via the subject parameter at /customer_support/ajax.php?action=save_ticket.