Support Incident Tracker@3.67 Security Vulnerabilities and Issues — Support Incident Tracker@3.67 CVE List

Lucene search

SitrackerSupport Incident Tracker3.67

4 matches found

CVE•added 2020/01/02 2:16 p.m.•82 views

CVE-2019-20221

In Support Incident Tracker (SiT!) 3.67, Load Plugins input in the config.php page is affected by XSS. The XSS payload is, for example, executed on the about.php page.

6.1CVSS6AI score0.00328EPSS

CVE•added 2020/01/02 2:16 p.m.•81 views

CVE-2019-20220

In Support Incident Tracker (SiT!) 3.67, the search_id parameter in the search_incidents_advanced.php page is affected by XSS.

6.1CVSS6.3AI score0.00328EPSS

CVE•added 2020/01/02 2:16 p.m.•78 views

CVE-2019-20223

In Support Incident Tracker (SiT!) 3.67, the id parameter is affected by XSS on all endpoints that use this parameter, a related issue to CVE-2012-2235.

6.1CVSS5.9AI score0.00328EPSS

CVE•added 2020/01/02 2:16 p.m.•75 views

CVE-2019-20222

In Support Incident Tracker (SiT!) 3.67, the Short Application Name and Application Name inputs in the config.php page are affected by XSS.

6.1CVSS6.2AI score0.00328EPSS