I found this vuln, I was wondering if it has been patched or what kind of issue it presents. I'm considering opening up osticket to the outside world but want to make sure we aren't being exposed. Thank you!
http://packetstormsecurity.com/files/119211/osTicket-1.7-DPR3-XSS-Disclosure-Redirect-SQL-Injection.html(http://packetstormsecurity.com/files/119211/osTicket-1.7-DPR3-XSS-Disclosure-Redirect-SQL-Injection.html)