SQL Injection Vulnerability in OwnTicket 2018-05-23 via showTicketId or editTicketStatusId Parameter
CVE-2018-18527 · HIGH Severity
AV:N/AC:L/AU:N/C:P/I:P/A:P
OwnTicket 2018-05-23 allows SQL Injection via the showTicketId or editTicketStatusId parameter.
Learn more about our Cis Benchmark Audit For Microsoft Sql Server.