Every CVE whose affected-product data names Kayako Supportsuite, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2008-3701 — CVSS 6.5 (medium): SQL injection vulnerability in staff/index.php in Kayako SupportSuite 3.20.02 and earlier allows remote authenticated users to execute…
CVE-2008-0395 — CVSS 5.0 (medium): Kayako SupportSuite 3.11.01 allows remote attackers to obtain server configuration information via a direct request to syncml/index.php…
CVE-2005-4638 — CVSS 5.0 (medium): index.php in Kayako SupportSuite 3.00.26 and earlier allow remote attackers to obtain the full path via (1) _a and (2) newsid parameters in…
CVE-2008-3700 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Kayako SupportSuite 3.20.02 and earlier allow remote attackers to inject arbitrary…
CVE-2006-5825 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in index.php in Kayako SupportSuite 3.00.32 allows remote attackers to inject arbitrary web script…
CVE-2009-3427 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in Kayako SupportSuite 3.50.06 allows remote attackers to inject arbitrary web script or HTML via…
CVE-2009-3567 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in modules/tickets/functions_ticketsui.php in Kayako SupportSuite and eSupport 3.60.04 and earlier…
CVE-2010-0460 — CVSS 3.5 (low): Multiple cross-site scripting (XSS) vulnerabilities in staff/index.php in Kayako SupportSuite 3.60.04 and earlier allow remote…