Vulnerabilities > Kayako > Esupport > 3.20.2

DATE CVE VULNERABILITY TITLE RISK
2008-10-28 CVE-2008-4761 Cross-Site Scripting vulnerability in Kayako Esupport 3.20.2
Cross-site scripting (XSS) vulnerability in includes/htmlArea/plugins/HtmlTidy/html-tidy-logic.php in Kayako eSupport 3.20.2 allows remote attackers to inject arbitrary web script or HTML via the jsMakeSrc parameter.
network
kayako CWE-79
4.3