CVE-2021-43971

Published: Jan 11, 2022
Updated: Apr 14, 2023
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2021-43971" target="_blank" rel="noopener"> CVE-2021-43971
Severity: High
Exploit:

A SQL injection vulnerability in /mobile/SelectUsers.jsp in SysAid ITIL 20.4.74 b10 allows a remote authenticated attacker to execute arbitrary SQL commands via the filterText parameter.