SQL injection vulnerability in incident_attachments.php in Support Incident Tracker (aka SiT!) 3.65 allows remote malicious users to execute arbitrary SQL commands via an uploaded file with a crafted file name.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sitracker support incident tracker 3.65 |