header-logo
Suggest Exploit
vendor:
Helpdesk Issue Manager
by:
7.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: Helpdesk Issue Manager
Affected Version From: 0.9
Affected Version To: 0.9
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:

Helpdesk Issue Manager SQL Injection Vulnerabilities

Helpdesk Issue Manager is prone to multiple SQL injection vulnerabilities. Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit vulnerabilities in the underlying database implementation.

Mitigation:

To mitigate these vulnerabilities, it is recommended to sanitize and validate user input before using it in SQL queries. Additionally, it is advised to use parameterized queries or prepared statements.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/15604/info

Helpdesk Issue Manager is prone to multiple SQL injection vulnerabilities.

Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit vulnerabilities in the underlying database implementation.

Helpdesk Issue Manager 0.9 and prior versions are reportedly affected. 

http://www.example.com/issue.php?id=[SQL]