Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kayako vulnerabilities and exploits
(subscribe to this query)
760
VMScore
CVE-2010-2912
SQL injection vulnerability in index.php in Kayako eSupport 3.70.02 allows remote malicious users to execute arbitrary SQL commands via the _a parameter in a downloads action.
Kayako Esupport 3.70.02
2 EDB exploits
645
VMScore
CVE-2005-2461
Multiple SQL injection vulnerabilities in the calendar feature in Kayako liveResponse 2.x allow remote malicious users to execute arbitrary SQL commands via the (1) year or (2) date parameter.
Kayako Liveresponse 2.0
1 EDB exploit
187
VMScore
CVE-2005-2462
Kayako liveResponse 2.x, when logging in a user, records the password in plaintext in the URL, which allows local users and possibly remote malicious users to gain privileges.
Kayako Liveresponse 2.0
570
VMScore
CVE-2005-2463
Kayako liveResponse 2.x allows remote malicious users to obtain sensitive information via a direct request to addressbook.php and other include scripts, which reveals the path in an error message.
Kayako Liveresponse 2.0
760
VMScore
CVE-2010-2911
SQL injection vulnerability in index.php in Kayako eSupport 3.70.02 allows remote malicious users to execute arbitrary SQL commands via the newsid parameter in a viewnews action.
Kayako Esupport 3.70.02
2 EDB exploits
NA
CVE-2022-35913
Samourai Wallet Stonewallx2 0.99.98e allows a denial of service via a P2P coinjoin. The attacker and victim must follow each other's paynym. Then, the victim must try to collaborate with the attacker for a Stonewallx2 transaction. Next, the attacker broadcasts a tx, spending...
Kayako Samourai 0.99.98e
585
VMScore
CVE-2005-2460
Multiple cross-site scripting (XSS) vulnerabilities in Kayako liveResponse 2.x allow remote malicious users to inject arbitrary web script or HTML via the (1) username parameter or (2) name field when entering a session or sending a message.
Kayako Liveresponse 2.0
1 EDB exploit
605
VMScore
CVE-2005-0487
Cross-site scripting (XSS) vulnerability in index.php for Kayako ESupport 2.3.1, and possibly other versions, allows remote malicious users to inject arbitrary HTML and web script via the nav parameter.
Kayako Esupport 2.3.1
383
VMScore
CVE-2007-2562
Cross-site scripting (XSS) vulnerability in index.php in Kayako eSupport 3.00.90 allows remote malicious users to inject arbitrary web script or HTML via the _m parameter.
Kayako Esupport 3.00.90
435
VMScore
CVE-2005-0842
Cross-site scripting (XSS) vulnerability in index.php in Kayako eSupport 2.3 allows remote malicious users to inject arbitrary web script or HTML via the (1) _i or (2) _c parameter.
Kayako Esupport 2.3
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »