CVE-2015-2972
Thetis is a Sysphonic Thetis (Thetis groupware) vulnerability (CVE-2015-2972) involving SQL injection (CWE-89) in Thetis before 2.3.0. Affected component: Thetis software; root cause: insecure handling of SQL queries allowing remote attackers to execute arbitrary SQL via unspecified vectors. Impa...