30Ara
CVE-2023-50070 | SourceCodester Customer Support System 1.0 ajax.php department_id/customer_id/subject sql injection
A vulnerability was found in SourceCodester Customer Support System 1.0. It has been classified as critical. This affects an unknown part of the file /customer_support/ajax.php?action=save_ticket. The manipulation of the argument department_id/customer_id/subject leads to sql injection. This vulnerability is uniquely identified as CVE-2023-50070. The attack can only be done within the local network. There is no exploit available.