SQL injection in Tickets listing

242
Defect
Trupik
-
2.3.3
2.3.2
Tickets
Fixed
Normal
Critical
5 years ago
3 years ago
0

Description

What did you do to cause this? I fiddled a bit with URL in my installation and stumbled upon an SQL injection situation. It has been made even easier by showing me the actual query.

What page were you on? .../tickets?status=open&type=1%29;SQL_INJECTION%28

Describe the defect: It shows me the query, and allows me to put anything into it. Any skilled hacker would abuse this with great pleasure.

Ticket History

5 years and 7 months ago by Jack

  • Closed ticket as Fixed
  • Changed custom_field from 0% to 100%

Should be fixed now. Thanks for reporting this.