25 matches found
EUVD-2012-4797
Malware in sbrugna...
EUVD-2012-3211
Malware in sbrugna...
Kayako Fusion Cross Site Scripting Vulnerability
Exploit for php platform in category web applications This is private exploit. You can buy it at https://0day.today...
Kayako Fusion v4.51.1891 - Multiple Web Vulnerabilities
Title: ====== Kayako Fusion v4.51.1891 - Multiple Web Vulnerabilities Date: ===== 2013-01-22 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=824 ID: SWIFT-3119 URL: http://dev.kayako.com/browse/SWIFT-3119 VL-ID: ===== 824 Common Vulnerability Scoring System:...
Kayako Fusion 4.51.1891 Cross Site Scripting
Title: ====== Kayako Fusion v4.51.1891 - Multiple Web Vulnerabilities Date: ===== 2013-01-22 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=824 ID: SWIFT-3119 URL: http://dev.kayako.com/browse/SWIFT-3119 VL-ID: ===== 824 Common Vulnerability Scoring System:...
Kayako Fusion v4.51.1891 - Multiple Web Vulnerabilities
Document Title: =============== Kayako Fusion v4.51.1891 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=824 ID: SWIFT-3119 URL: http://dev.kayako.com/browse/SWIFT-3119 Release Date: ============= 2013-01-21 Vulnerability...
Kayako Fusion v4.51.1891 - Multiple Web Vulnerabilities
Document Title: =============== Kayako Fusion v4.51.1891 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=824 ID: SWIFT-3119 URL: http://dev.kayako.com/browse/SWIFT-3119 Release Date: ============= 2013-01-21 Vulnerability...
CVE-2012-3233
Cross-site scripting XSS vulnerability in swift/thirdparty/PHPExcel/PHPExcel/Shared/JAMA/docs/download.php in Kayako Fusion 4.40.1148, and possibly before 4.50.1581, allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...
Cross site scripting
Cross-site scripting XSS vulnerability in swift/thirdparty/PHPExcel/PHPExcel/Shared/JAMA/docs/download.php in Kayako Fusion 4.40.1148, and possibly before 4.50.1581, allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...
CVE-2012-3233
Cross-site scripting XSS vulnerability in swift/thirdparty/PHPExcel/PHPExcel/Shared/JAMA/docs/download.php in Kayako Fusion 4.40.1148, and possibly before 4.50.1581, allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...
CVE-2012-3233
CVE-2012-3233 describes an XSS in Kayako Fusion 4.40.1148 via the file path in /__swift/thirdparty/PHPExcel/PHPExcel/Shared/JAMA/docs/download.php using PATH_INFO . Public advisories note the vulnerability affected Kayako Fusion and were fixed by upgrading to 4.50.1581 ; exploitation requires tha...
Cross-Site Scripting (XSS) in Kayako Fusion
Advisory ID: HTB23095 Product: Kayako Fusion Vendor: Kayako Vulnerable Versions: 4.40.1148 and probably prior Tested Version: 4.40.1148 Vendor Notification: June 6, 2012 Public Disclosure: September 5, 2012 Vulnerability Type: Cross-Site Scripting CWE-79 CVE Reference: CVE-2012-3233 CVSSv2 Base...
CVE-2012-4872
Cross-site scripting XSS vulnerability in Tickets/Submit in Kayako Fusion before 4.40.985 allows remote attackers to inject arbitrary web script or HTML via certain vectors, possibly a crafted ticket description...
Cross site scripting
Cross-site scripting XSS vulnerability in Tickets/Submit in Kayako Fusion before 4.40.985 allows remote attackers to inject arbitrary web script or HTML via certain vectors, possibly a crafted ticket description...
CVE-2012-4872
Cross-site scripting XSS vulnerability in Tickets/Submit in Kayako Fusion before 4.40.985 allows remote attackers to inject arbitrary web script or HTML via certain vectors, possibly a crafted ticket description...
CVE-2012-4872
CVE-2012-4872 is a cross-site scripting (XSS) vulnerability in Kayako Fusion, affecting the Tickets/Submit path prior to version 4.40.985. The issue allows remote attackers to inject arbitrary script/HTML via vectors such as a crafted ticket description. CVSS 2.0 base score 4.3 (Medium). Referenc...
Kayako Fusion 4.40.1148 Cross Site Scripting Vulnerability
Exploit for php platform in category web applications Product: Kayako Fusion Vendor: Kayako Vulnerable Versions: 4.40.1148 and probably prior Tested Version: 4.40.1148 Vendor Notification: June 6, 2012 Public Disclosure: September 5, 2012 Vulnerability Type: Cross-Site Scripting CWE-79 CVE...
Kayako Fusion 4.40.1148 Cross Site Scripting
Advisory ID: HTB23095 Product: Kayako Fusion Vendor: Kayako Vulnerable Versions: 4.40.1148 and probably prior Tested Version: 4.40.1148 Vendor Notification: June 6, 2012 Public Disclosure: September 5, 2012 Vulnerability Type: Cross-Site Scripting CWE-79 CVE Reference: CVE-2012-3233 CVSSv2 Base...
Kayako Fusion - download.php Cross-Site Scripting
Kayako Fusion - download.php Cross-Site Scripting source: https://www.securityfocus.com/bid/55417/info Kayako Fusion is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in...
Kayako Fusion - 'download.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/55417/info Kayako Fusion is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context...