CVE-2005-4638

2005-12-31T00:00:00
ID CVE-2005-4638
Type cve
Reporter NVD
Modified 2017-07-19T21:29:20

Description

index.php in Kayako SupportSuite 3.00.26 and earlier allow remote attackers to obtain the full path via (1) _a and (2) newsid parameters in the news module, (3) downloaditemid parameter in the downloads module, and (4) kbarticleid parameter in the knowledgebase module.