Known Vulnerabilities for Support Incident Tracker by Sitracker

Listed below are 10 of the newest known vulnerabilities associated with "Support Incident Tracker" by "Sitracker".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2019-20223	In Support Incident Tracker (SiT!) 3.67, the id parameter is affected by XSS on all endpoints that use this parameter, a rela...	6.1 - MEDIUM	2020-01-02	2020-01-03
CVE-2019-20222	In Support Incident Tracker (SiT!) 3.67, the Short Application Name and Application Name inputs in the config.php page are af...	6.1 - MEDIUM	2020-01-02	2020-01-03
CVE-2019-20221	In Support Incident Tracker (SiT!) 3.67, Load Plugins input in the config.php page is affected by XSS. The XSS payload is, fo...	6.1 - MEDIUM	2020-01-02	2020-01-03
CVE-2019-20220	In Support Incident Tracker (SiT!) 3.67, the search_id parameter in the search_incidents_advanced.php page is affected by XSS...	6.1 - MEDIUM	2020-01-02	2020-01-03
CVE-2012-2235	Cross-site scripting (XSS) vulnerability in Support Incident Tracker (SiT!) 3.65 and earlier allows remote attackers to injec...	4.3 - MEDIUM	2012-05-27	2012-05-28
CVE-2011-3833	Unrestricted file upload vulnerability in ftp_upload_file.php in Support Incident Tracker (aka SiT!) 3.65 allows remote authe...	6 - MEDIUM	2012-01-29	2017-08-29
CVE-2011-3832	Eval injection vulnerability in config.php in Support Incident Tracker (aka SiT!) 3.65 allows remote authenticated administra...	6.5 - MEDIUM	2012-01-29	2017-08-29
CVE-2011-3831	SQL injection vulnerability in incident_attachments.php in Support Incident Tracker (aka SiT!) 3.65 allows remote attackers t...	7.5 - HIGH	2012-01-29	2017-08-29
CVE-2011-3830	Cross-site scripting (XSS) vulnerability in search.php in Support Incident Tracker (aka SiT!) 3.65 allows remote attackers to...	4.3 - MEDIUM	2012-01-29	2017-08-29
CVE-2011-3829	ftp_upload_file.php in Support Incident Tracker (aka SiT!) 3.65 allows remote authenticated users to obtain sensitive informa...	4 - MEDIUM	2012-01-29	2017-08-29

Results limited to 10 most recent vulnerabilities

Known Affected Configurations (CPE V2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Sitracker	Support Incident Tracker	9.8.00	All	All	All
Application	Sitracker	Support Incident Tracker	8.8.00	All	All	All
Application	Sitracker	Support Incident Tracker	7.8.00	All	All	All
Application	Sitracker	Support Incident Tracker	4.8.00	All	All	All
Application	Sitracker	Support Incident Tracker	31.07.00	All	All	All
Application	Sitracker	Support Incident Tracker	3.67	All	All	All
Application	Sitracker	Support Incident Tracker	3.65	All	All	All
Application	Sitracker	Support Incident Tracker	3.64	All	All	All
Application	Sitracker	Support Incident Tracker	3.63	beta1	All	All
Application	Sitracker	Support Incident Tracker	3.63	All	All	All
Application	Sitracker	Support Incident Tracker	3.62	All	All	All
Application	Sitracker	Support Incident Tracker	3.61	All	All	All
Application	Sitracker	Support Incident Tracker	3.60	All	All	All
Application	Sitracker	Support Incident Tracker	3.6	All	All	All
Application	Sitracker	Support Incident Tracker	3.51	All	All	All
Application	Sitracker	Support Incident Tracker	3.50	All	All	All
Application	Sitracker	Support Incident Tracker	3.50	beta1	All	All
Application	Sitracker	Support Incident Tracker	3.45	All	All	All
Application	Sitracker	Support Incident Tracker	3.45	beta1	All	All
Application	Sitracker	Support Incident Tracker	3.07	All	All	All

Results limited to 20 most recent known configurations