newsbot
29-06-2009, 10:08 PM
<excerpt>osTicket fails to validate / escape staff usernames which can be abused to execute a blind sql injection attack by an unauthenticated attacker</excerpt>.
-</p>
Make your website safer. Use external penetration testing (http://www.beyondsecurity.com/penetration-testing.html) service. First report ready in one hour!</p>
**Hidden Content: Check the thread to see hidden data.**
-</p>
Make your website safer. Use external penetration testing (http://www.beyondsecurity.com/penetration-testing.html) service. First report ready in one hour!</p>
**Hidden Content: Check the thread to see hidden data.**