2 matches found
CVE-2005-0487
Cross-site scripting XSS vulnerability in index.php for Kayako ESupport 2.3.1, and possibly other versions, allows remote attackers to inject arbitrary HTML and web script via the nav parameter...
CVE-2005-0487
CVE-2005-0487 affects Kayako ESupport 2.3.1 (and possibly other versions). The vulnerability is a cross-site scripting (XSS) flaw in index.php exposed via the nav parameter, allowing remote attackers to inject arbitrary HTML/script. The NVD entry lists a base CVSS v2 score of 6.8 (MEDIUM) with ne...