CVE-2018-18527
OwnTicket 2018-05-23 allows SQL Injection via the showTicketId or editTicketStatusId parameter.
9.8CVSS
9.8AI Score
0.003EPSS