Xigla » Absolute Live Support Xe : Security Vulnerabilities, CVEs,
Cross-site scripting (XSS) vulnerability in admin/search.asp in Xigla Absolute Live Support XE 5.1 allows remote authenticated administrators to inject arbitrary web script or HTML via unspecified vectors ("all fields").
Max CVSS
3.5
EPSS Score
0.15%
Published
2008-06-18
Updated
2017-08-08
SQL injection vulnerability in search.asp in Xigla Absolute Live Support XE 5.1 allows remote authenticated administrators to execute arbitrary SQL commands via the orderby parameter.
Max CVSS
6.5
EPSS Score
0.14%
Published
2008-06-18
Updated
2017-08-08
Multiple cross-site scripting (XSS) vulnerabilities in XIGLA Absolute Live Support XE 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) Screen name or (2) Session Topic field.
Max CVSS
4.3
EPSS Score
0.59%
Published
2006-03-28
Updated
2017-07-20
3 vulnerabilities found