>> osTicket 1.9.12 XSS / File Upload / Access Bypass / Session Fixation

USER: deepcore // DATE: 2016-02-08 06:46 // MODIFIED: 2016-02-08

osTicket version 1.9.12 suffers from authentication bypass, session fixation, file upload, and cross site scripting vulnerabilities.