Every CVE whose affected-product data names Kayako Esupport, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (12)
CVE-2010-2912 — CVSS 7.5 (high): SQL injection vulnerability in index.php in Kayako eSupport 3.70.02 allows remote attackers to execute arbitrary SQL commands via the _a…
CVE-2010-2911 — CVSS 7.5 (high): SQL injection vulnerability in index.php in Kayako eSupport 3.70.02 allows remote attackers to execute arbitrary SQL commands via the…
CVE-2005-0487 — CVSS 6.8 (medium): Cross-site scripting (XSS) vulnerability in index.php for Kayako ESupport 2.3.1, and possibly other versions, allows remote attackers to…
CVE-2004-1413 — CVSS 5.0 (medium): Multiple SQL injection vulnerabilities in Kayako eSupport 2.x allow remote attackers to execute arbitrary SQL commands via the (1) subcat…
CVE-2008-4761 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in includes/htmlArea/plugins/HtmlTidy/html-tidy-logic.php in Kayako eSupport 3.20.2 allows remote…
CVE-2009-3567 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in modules/tickets/functions_ticketsui.php in Kayako SupportSuite and eSupport 3.60.04 and earlier…
CVE-2007-2562 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in index.php in Kayako eSupport 3.00.90 allows remote attackers to inject arbitrary web script or…
CVE-2005-0842 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in index.php in Kayako eSupport 2.3 allows remote attackers to inject arbitrary web script or HTML…
CVE-2007-1145 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Kayako SupportSuite - ESupport 3.00.13 and 3.04.10 allow remote attackers to inject…
CVE-2004-1412 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in index.php in Kayako eSupport 2.x allows remote attackers to inject arbitrary web script or HTML…
CVE-2010-0460 — CVSS 3.5 (low): Multiple cross-site scripting (XSS) vulnerabilities in staff/index.php in Kayako SupportSuite 3.60.04 and earlier allow remote…
CVE-2006-4011 — CVSS 2.6 (low): PHP remote file inclusion vulnerability in esupport/admin/autoclose.php in Kayako eSupport 2.3.1 and earlier, when register_globals is…