Vulnerabilities > Kayako > Esupport > 3.00.90
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-10-06 | CVE-2009-3567 | Cross-Site Scripting vulnerability in Kayako Esupport and Supportsuite Cross-site scripting (XSS) vulnerability in modules/tickets/functions_ticketsui.php in Kayako SupportSuite and eSupport 3.60.04 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in the staff control panel, a different vector than CVE-2007-1145. | 4.3 |
2007-05-09 | CVE-2007-2562 | Cross-Site Scripting vulnerability in Kayako Esupport 3.00.90 Cross-site scripting (XSS) vulnerability in index.php in Kayako eSupport 3.00.90 allows remote attackers to inject arbitrary web script or HTML via the _m parameter. network kayako | 4.3 |