7.9 High
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
68.2%
SQL injection vulnerability in staff/index.php in Kayako SupportSuite 3.20.02 and earlier allows remote authenticated users to execute arbitrary SQL commands via the customfieldlinkid parameter in a delcflink action.
forums.kayako.com/f3/3-30-00-stable-released-18304/
osvdb.org/47616
secunia.com/advisories/31431
www.gulftech.org/?node=research&article_id=00123-08092008
www.securityfocus.com/bid/30642
exchange.xforce.ibmcloud.com/vulnerabilities/44384