Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2020-09-30	CVE-2020-15487	SQL Injection vulnerability in Re-Desk Re:Desk 2.3 Re:Desk 2.3 contains a blind unauthenticated SQL injection vulnerability in the getBaseCriteria() function in the protected/models/Ticket.php file. network low complexity re-desk CWE-89 critical	9.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.