RSS   Vulnerabilities for 'Fusion'   RSS

2012-09-15
 
CVE-2012-3233

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in __swift/thirdparty/PHPExcel/PHPExcel/Shared/JAMA/docs/download.php in Kayako Fusion 4.40.1148, and possibly before 4.50.1581, allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.

 

 >>> Vendor: Kayako 5 Products
Esupport
Liveresponse
Supportsuite
Fusion
Kayako fusion


Copyright 2024, cxsecurity.com

 

Back to Top