CVE-2005-4617

2006-01-0411:00:00

mitre

www.cve.org

AI Score

8.4

Confidence

Low

EPSS

0.002

Percentile

51.8%

JSON

SQL injection vulnerability in tickets.php in cSupport 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the pg parameter.

References

pridels0.blogspot.com/2005/11/csupport-pg-sql-inj.html

www.osvdb.org/21316

exchange.xforce.ibmcloud.com/vulnerabilities/24358