Zammad advisory ZAA-2026-06: critical SQL injection in Zammad 6.5.x (fixed in 7.0.0)
Zammad published advisory ZAA-2026-06 for a critical SQL injection in Zammad 6.5.x, fixed in 7.0.0, affecting authorized agent/customer API access.
Security AdvisoryWeb SecuritySQL Injection
Today