Supportsuite Security Vulnerabilities and Issues — Supportsuite CVE List

Lucene search

KayakoSupportsuite

3 matches found

CVE•added 2008/01/23 12:0 p.m.•37 views

CVE-2008-0395

Kayako SupportSuite 3.11.01 allows remote attackers to obtain server configuration information via a direct request to syncml/index.php, which prints the contents of the $_SERVER superglobal.

5CVSS6.3AI score0.00319EPSS

CVE•added 2008/08/15 8:41 p.m.•30 views

CVE-2008-3700

Multiple cross-site scripting (XSS) vulnerabilities in Kayako SupportSuite 3.20.02 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the sessionid parameter in a livesupport startclientchat action to visitor/index.php; (2) the filter parameter in a news view action t...

4.3CVSS5.8AI score0.03307EPSS

CVE•added 2008/08/15 8:41 p.m.•29 views

CVE-2008-3701

SQL injection vulnerability in staff/index.php in Kayako SupportSuite 3.20.02 and earlier allows remote authenticated users to execute arbitrary SQL commands via the customfieldlinkid parameter in a delcflink action.

6.5CVSS7.9AI score0.00227EPSS