2 matches found
CVE-2015-7670
CVE-2015-7670 : The WordPress Support Ticket System plugin (pre-1.2.1) is vulnerable to multiple SQL injections in includes/update.php via the (1) user and (2) id parameters. This allows remote attackers to execute arbitrary SQL commands and potentially access or modify tickets/users. The vulnera...
WordPress Support Ticket System 1.2 SQL Injection Vulnerability
WordPress Support Ticket System plugin version 1.2 suffers from a remote SQL injection vulnerability. Vulnerability title: SQL Injection in Support Ticket System 1.2 WordPress plugin CVE: CVE-2015-7670 Vendor: Tim Dahlmanns Product: Support Ticket System Affected version: 1.2 Fixed version: 1.2.1...