Kayako ESupport Multiple Cross-Site Scripting and SQL Injection Vulnerabilities

Kayako ESupport Multiple Cross-Site Scripting and SQL Injection Vulnerabilities

Solution:
The researcher who reported this issue stated that a fix was pending from the vendor. This has not been confirmed by Symantec.

---
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com <mailto:vuldb@securityfocus.com>.