2 matches found
CVE-2008-4761
Cross-site scripting XSS vulnerability in includes/htmlArea/plugins/HtmlTidy/html-tidy-logic.php in Kayako eSupport 3.20.2 allows remote attackers to inject arbitrary web script or HTML via the jsMakeSrc parameter. NOTE: the provenance of this information is unknown; the details are obtained sole...
CVE-2008-4761
CVE-2008-4761 describes a Cross-site scripting (XSS) vulnerability in Kayako eSupport 3.20.2, triggered through the jsMakeSrc parameter in includes/htmlArea/plugins/HtmlTidy/html-tidy-logic.php. The issue is believed to reside in the HTMLArea HTMLTidy (HTML Tidy) plugin rather than eSupport itsel...