Vulnerabilities > CVE-2004-1412 - Unspecified vulnerability in Kayako Esupport
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN kayako
exploit available
Summary
Cross-site scripting (XSS) vulnerability in index.php in Kayako eSupport 2.x allows remote attackers to inject arbitrary web script or HTML via the searchm parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 5 |
Exploit-Db
| description | Kayako eSupport 2.x index.php Knowledgebase XSS. CVE-2004-1412. Webapps exploit for php platform |
| id | EDB-ID:25037 |
| last seen | 2016-02-03 |
| modified | 2004-12-18 |
| published | 2004-12-18 |
| reporter | James Bercegay |
| source | https://www.exploit-db.com/download/25037/ |
| title | Kayako eSupport 2.x index.php Knowledgebase XSS |
References
- http://marc.info/?l=bugtraq&m=110352428607171&w=2
- http://marc.info/?l=bugtraq&m=110352428607171&w=2
- http://www.gulftech.org/?node=research&article_id=00056-12182004
- http://www.gulftech.org/?node=research&article_id=00056-12182004
- http://www.securityfocus.com/bid/12037
- http://www.securityfocus.com/bid/12037
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18571
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18571