CVE-2020-15308

Support Incident Tracker aka SiT! or SiTracker 3.67 p2 allows post-authentication SQL injection via the siteedit.php typeid or site parameter, the searchincidentsadvanced.php searchtitle parameter, or the reportqbe.php criteriafield parameter...

CVE-2020-15308

Support Incident Tracker (SiT!/SiTracker) 3.67 p2 has a post-authentication SQL injection vulnerability exposed via: site_edit.php (typeid or site), search_incidents_advanced.php (search_title), and report_qbe.php (criteriafield). Connected documents confirm the CVE-2020-15308 details and associa...

Sitracker SIT File Upload

This module combines two separate issues within Support Incident Tracker = 3.65 application to upload arbitrary data and thus execute a shell. The two issues exist in ftpuploadfile.php. Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...

Support Incident Tracker <= 3.65 (translate.php) Remote Code Execution

Exploit for php platform in category web applications ?php / ------------------------------------------------------------------------------ Support Incident Tracker = 3.65 translate.php Remote Code Execution Exploit ------------------------------------------------------------------------------...

Support Incident Tracker (SiT!) < 3.65 Multiple Vulnerabilities - Active Check

Support Incident Tracker SiT! is prone to multiple vulnerabilities. Copyright C 2011 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...