I brought up osticket.com for a WordPress plugin site where we are trying to sell some plugins. Occasionally we get a request where someone wants us to describe some HTML code of a WordPress theme, such as changes to a theme to make our plugin work. Unfortunately, the osTicket version from June doesn't have this feature. So, we're having to email back and forth with a customer instead.

I was going to suggest that you permit HTML support in tickets, but do so with proper PHP practices to prevent things like:

- SQL injection attacks

- XSS attacks

- phishing attacks

There are many sources on the web to help you achieve that.