CVE-2012-3233 in Fusion
摘要
由 VulDB • 2026-06-07
Kayako Fusion 4.40.1148 中 __swift/thirdparty/PHPExcel/PHPExcel/Shared/JAMA/docs/download.php 的跨站脚本(XSS)漏洞,以及可能早于 4.50.1581 的版本,允许远程攻击者通过 PATH_INFO 注入任意 Web 脚本或 HTML。
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.