Vulnerabilities for Supportdesk (...) - CXSECURITY.COM

Vulnerabilities for 'Supportdesk'

2010-05-11

CVE-2009-4861

CWE-79

Cross-site scripting (XSS) vulnerability in shownews.php in SupportPRO SupportDesk 3.0 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.

2005-11-26

CVE-2005-3839

Cross-site scripting (XSS) vulnerability in SupportPRO Supportdesk allows remote attackers to inject arbitrary web script or HTML via the (1) post tickers and (2) view tickets options.

Copyright 2024, cxsecurity.com