← back
CVE-2018-18923

CVE-2018-18923

EPSS 3.2%
AbiSoft Ticketly 1.0 is affected by multiple SQL Injection vulnerabilities through the parameters name, category_id and description in action/addproject.php; kind_id, priority_id, project_id, status_id and title in action/addticket.php; and kind_id and status_id in reports.php.
Affected products
n/a · n/a
public PoCs found2
cve_referencewww.exploit-db.com/exploits/45902/unverifiedexploitdbwww.exploit-db.com/exploits/45902unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://hackpuntes.com/cve-2018-18923-ticketly-1-0-multiples-sql-injections/https://www.exploit-db.com/exploits/45902/