Multiple SQL injection vulnerabilities in /customer_support/ajax.php?action=save_ticket in Customer Support System 1.0 allow authenticated attackers to execute arbitrary SQL commands via department_id, customer_id and subject.
CVE-2023-50070 Customer Support System 10 - Multiple SQL injection vulnerabilities - save_ticket Description: Multiple SQL injection vulnerabilities in /customer_support/ajaxphp?action=save_ticket in Customer Support System 10 allow authenticated attackers to execute arbitrary SQL commands via department_id, customer_id and subject Vulnerable Product Version:&n