Skip to main content

CVE-2023-49970

Description

Customer Support System v1 was discovered to contain a SQL injection vulnerability via the subject parameter at /customer_support/ajax.php?action=save_ticket.

NVD
Severity: N/A
CVE ID: CVE-2023-49970
CVSS Score: N/A
CVSS Metrics: NVD assessment not yet provided.

Refrence: NVD MITRE

Proof Of Concept

geraldoalcantara

Customer Support System 1.0 - SQL Injection Vulnerability in the "subject" Parameter During "save_ticket" Operation

Refrence: GitHub

Description
Proof Of Concept