Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.8
CVSSv2

CVE-2005-2460

Published: 31/12/2005 Updated: 18/10/2016
CVSS v2 Base Score: 5.8 | Impact Score: 4.9 | Exploitability Score: 8.6
VMScore: 585
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N

Vulnerability Summary

Multiple cross-site scripting (XSS) vulnerabilities in Kayako liveResponse 2.x allow remote malicious users to inject arbitrary web script or HTML via the (1) username parameter or (2) name field when entering a session or sending a message.

Vulnerable Product Search on Vulmon Subscribe to Product

kayako liveresponse 2.0

Exploits

Exploit DB: Kayako Live Response 2.0 - 'index.php?Username' Cross-Site Scripting
source: wwwsecurityfocuscom/bid/14425/info Kayako LiveResponse is prone to multiple cross-site scripting, SQL injection, and HTML injection vulnerabilties These issues are all related to input validation errors The cross-site scripting and HTML injection vulnerabilities may allow for theft of cookie-based authentication credentials or ...

References

NVD-CWE-Otherhttp://www.gulftech.org/?node=research&article_id=00092-07302005http://www.securityfocus.com/bid/14425http://www.osvdb.org/18395http://www.osvdb.org/18397http://secunia.com/advisories/16286http://marc.info/?l=bugtraq&m=112274359718863&w=2https://nvd.nist.govhttps://www.exploit-db.com/exploits/26051/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
injectCVE-2024-34001CVE-2024-37018LFICVE-2024-1275CVE-2024-1086CSRFCVE-2024-31030CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook