CVE-2017-15362
CVE-2017-15362 corresponds to a stored/reflected cross-site scripting (XSS) issue in osTicket 1.10.1 where an attacker can trigger JavaScript execution by persuading a logged-in user to click a crafted link in tickets.php (status parameter). The core problem is client-side script execution throug...