Multiple SQL Injection Vulnerabilities in osTicket

Multiple SQL Injection Vulnerabilities in osTicket

CVE-2005-1437 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Multiple SQL injection vulnerabilities in osTicket allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to admin.php or (2) cat parameter to view.php.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.