Blind SQL injection in the login form in ServiceTonic Helpdesk software < 9.0.35937 allows malicious user to exfiltrate information via specially crafted HQL-compatible time-based SQL queries.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
servicetonic servicetonic |