CVE-2005-0487

CVE-2005-0487

EPSS 1.3%

Cross-site scripting (XSS) vulnerability in index.php for Kayako ESupport 2.3.1, and possibly other versions, allows remote attackers to inject arbitrary HTML and web script via the nav parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://marc.info/?l=full-disclosure&m=110845724029888&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/18571 http://www.securityfocus.com/bid/12563