SQL injection in Tickets listing - Tickets - Traq

#242 - SQL injection in Tickets listing

Description

What did you do to cause this? I fiddled a bit with URL in my installation and stumbled upon an SQL injection situation. It has been made even easier by showing me the actual query.

What page were you on? .../tickets?status=open&type=1%29;SQL_INJECTION%28

Describe the defect: It shows me the query, and allows me to put anything into it. Any skilled hacker would abuse this with great pleasure.

Activity

13 years and 7 months ago by Jack

Closed ticket as Fixed
custom_field 0% 100%

Should be fixed now. Thanks for reporting this.

Status

Fixed

Assignee

Priority

Normal

Details

Type

Defect

Milestone

2.3.3

Component

Tickets

Version

2.3.2

Severity

Critical

Tracking

Owner

Trupik

Reported

13 years and 7 months ago

Updated

11 years and 11 months ago

Votes

Proposed time

Worked time