CVE-2005-4637
Kayako SupportSuite 3.00.26 and earlier (index.php) contains multiple XSS flaws. Exploitable via (1) nav parameter in downloads module, (2) Full Name and (3) Email in core, (4) Full Name, (5) Email, and (6) Subject in tickets, and (7) Registered Email in lostpassword feature. Impact per sources: ...