jetlib.sec » Bugtraq » [PT-2011-02] PHP code Injection in Kayako Support Suite

Feeds

132963 items (0 unread) in 27 feeds

• 1337day (was: Inj3ct0r, 1337db)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

Bugtraq

• January 11, 2012
• 

  [PT-2011-02] PHP code Injection in Kayako Support Suite

  Posted: January 11th, 2012, 9:48am PST

  Tags:   

  Posted by noreply on Jan 11

  -----------------------------------------------------------------
  (PT-2011-02) Positive Technologies Security Advisory
  PHP code Injection in Kayako Support Suite
  -----------------------------------------------------------------
  
  ---[ Vulnerable software ]
  
  Kayako Support Suite
  Version: 3.70.02-stable and earlier
  
  Application link:
  http://www.kayako.com/
  
  ---[ Severity level ]
  
  Severity level: High
  Impact: Arbitrary PHP code execution...