SQL injection vulnerability in tickets.php in cSupport 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the pg parameter.Referenceshttp://www.osvdb.org/21316https://exchange.xforce.ibmcloud.com/vulnerabilities/24358http://pridels0.blogspot.com/2005/11/csupport-pg-sql-inj.html
