4 matches found
CVE-2026-1048
A weakness has been identified in LigeroSmart up to 6.1.26. Impacted is an unknown function of the file /otrs/index.pl?Action=AgentTicketZoom. This manipulation of the argument TicketID causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been made availabl...
CVE-2026-1048 LigeroSmart index.pl cross site scripting
A weakness has been identified in LigeroSmart up to 6.1.26. Impacted is an unknown function of the file /otrs/index.pl?Action=AgentTicketZoom. This manipulation of the argument TicketID causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been made availabl...
CVE-2026-1048
CVE-2026-1048 concerns LigeroSmart before or up to 6.1.26. The issue is a cross-site scripting vulnerability in the file path segment "/otrs/index.pl?Action=AgentTicketZoom" caused by manipulating the TicketID argument. The vulnerability is reported to be exploitable remotely, with public proof-o...
LigeroSmart code injection vulnerability
LigeroSmart is an open-source management platform developed by LigeroSmart. Versions of LigeroSmart 6.1.26 and earlier contained a code injection vulnerability. This vulnerability stemmed from incorrect handling of the parameter “TicketID” in the file /otrs/index.pl?Action=AgentTicketZoom, which...