[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Kayako SupportSuite Multiple Persistent Cross Site Scripting (Current Versions)

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Kayako SupportSuite Multiple Persistent Cross Site Scripting (Current Versions)
From: pen-test@xxxxxxxxxx
Date: 21 Jan 2010 22:17:16 -0000

##########################################################
# Comodo Group
#
# Vendor : Kayako Infotech Ltd.
# URL : http://www.kayako.com/
# Version : Kayako SupportSuite <= 3.60.04
##########################################################

We've discovered multiple persistent cross site scripting vulnerabilities in 
the latest version of Kayako SupportSuite (3.60.04).  Because of improper input 
validation an attacker (authenticated staff member) can inject javascript code 
into the body or even subject of a knowledge base article which will execute in 
to context of the victim's browser when they view the pages in question.  THis 
makes it possible to steal cookies, hijack sessions and more.  The severity of 
this is augmented by the fact that the subjects of newly published articles 
appear on the home page of the portal making it easy to compromise a large 
number of users.

The vendor has been notified, but until they issue a patch administrators can 
modify the relevant php themselves to do better input validation.

BKz
LPIC, Sec+, OSCP
http://www.comodo.com/

Prev by Date: iBoutique v4.0
Next by Date: Silverstripe <= v2.3.4: two XSS vulnerabilities
Previous by thread: iBoutique v4.0
Next by thread: Silverstripe <= v2.3.4: two XSS vulnerabilities
Index(es):
- Date
- Thread