Vulnerabilities > Kayako > Fusion

DATE CVE VULNERABILITY TITLE RISK
2012-09-15 CVE-2012-3233 Cross-Site Scripting vulnerability in Kayako Fusion 4.40.1148
Cross-site scripting (XSS) vulnerability in __swift/thirdparty/PHPExcel/PHPExcel/Shared/JAMA/docs/download.php in Kayako Fusion 4.40.1148, and possibly before 4.50.1581, allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
network
kayako CWE-79
4.3
4.3