I'm just into osTicket for first time. From database error messages, somewhere in the code, a single quote in a ticket subject is not beeing escaped (somewhere a string needs addslashes), however, not being familiar yet with the code, I cannot find where this is missing
- You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 't%' OR ticket.name LIKE '%can't%' OR ticket.subject LIKE '%can't%' )' at line 1
Where-ever user input text is used as a criteria, the string must be addslashes() in advance or the query is tripped.
Also, on these DB error messages, it would be helpful to reference the file name where the error occurrs.