NuytsTech Security

CVE-2012-4872

by ·

Cross-site scripting (XSS) vulnerability in Tickets/Submit in Kayako Fusion before 4.40.985 allows remote attackers to inject arbitrary web script or HTML via certain vectors, possibly a crafted ticket description.

Date published : 2012-09-06

http://www.securityfocus.com/bid/52625

http://st2tea.blogspot.com/2012/03/kayako-fusion-cross-site-scripting.html

Tags: