SQL injection vulnerability in ticket.php in TickFa 1.x... · CVE-2015-4676 · GitHub Advisory Database · GitHub

SQL injection vulnerability in ticket.php in TickFa 1.x...

Moderate severity Unreviewed Published May 17, 2022 to the GitHub Advisory Database • Updated Jan 27, 2023

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

SQL injection vulnerability in ticket.php in TickFa 1.x allows remote authenticated users to execute arbitrary SQL commands via the tid parameter in a read action.

References

Published by the National Vulnerability Database

Jun 19, 2015

Published to the GitHub Advisory Database May 17, 2022

Last updated Jan 27, 2023