CVE-2002-0932

Name of the Vulnerable Software and Affected Versions: MyHelpDesk version 20020509

Description: A SQL injection issue allows remote attackers to conduct unauthorized activities via SQL code in the id parameter for the operations (1) detailticket, (2) editticket, or (3) updateticketlog.

Recommendations: For MyHelpDesk version 20020509, consider restricting access to the id parameter in the affected operations until a patch is available. As a temporary workaround, avoid using the id parameter in the detailticket, editticket, or updateticketlog operations to minimize the risk of exploitation.