CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Xigla Software Absolute Live Support .NET 5.1 allows remote attackers to bypass authentication and gain administrative access by setting a cookie to a certain value...

7.5CVSS7.7AI score0.02511EPSS

Exploits1References4Affected Software1

Cvelist•added 2009/07/14 2:0 p.m.•18 views

CVE-2008-6864

Xigla Software Absolute Live Support .NET 5.1 allows remote attackers to bypass authentication and gain administrative access by setting a cookie to a certain value...

7.2AI score0.02511EPSS

Exploits1References4

CVE•added 2009/07/14 2:0 p.m.•46 views

CVE-2008-6864

CVE-2008-6864 affects Xigla Software Absolute Live Support .NET 5.1. The vulnerability allows remote attackers to bypass authentication and obtain administrative access by setting a specific cookie value, effectively compromising session integrity. This is a client-side/authentication bypass issu...

7.5CVSS7.4AI score0.02511EPSS

Exploits1References4Affected Software1

Packet Storm•added 2008/10/31 12:0 a.m.•21 views

absolutelive-cookie.txt

| | / | \ \ / / / | / | | | | \ | | | | \ V / | | | | | | | | | | | | | || | | | | | | | | | | | | | | || | / || | || \ | Discovered By: Hakxer Home : Www.educ-up.com Type Gap : Insecure Cookie Handling script : Absolute Live Support see script http://www.xigla.com/absolutelsnet/demo.htm Greetz...

7.4AI score

Exploits0

seebug.org•added 2008/10/31 12:0 a.m.•12 views

Absolute Live Support 5.1 Insecure Cookie Handling Vulnerability

No description provided by source. | | / | \ \ / / / | / | | | | \ | | | | \ V / | | | | | | | | | | | | | || | | | | | | | | | | | | | | || | / || | || \ | Discovered By: Hakxer Home : Www.educ-up.com Type Gap : Insecure Cookie Handling script : Absolute Live Support see script...

7.1AI score

Exploits0

exploitpack•added 2008/10/31 12:0 a.m.•11 views

Absolute Live Support 5.1 - Insecure Cookie Handling

Absolute Live Support 5.1 - Insecure Cookie Handling | | / | \ \ / / / | / | | | | \ | | | | \ V / | | | | | | | | | | | | | || | | | | | | | | | | | | | | || | / || | || \ | Discovered By: Hakxer Home : Www.educ-up.com Type Gap : Insecure Cookie Handling script : Absolute Live Support see...

0.3AI score

Exploits0

0day.today•added 2008/10/31 12:0 a.m.•12 views

Absolute Live Support 5.1 Insecure Cookie Handling Vulnerability

Exploit for unknown platform in category web applications ================================================================ Absolute Live Support 5.1 Insecure Cookie Handling Vulnerability ================================================================ Discovered By: Hakxer Type Gap : Insecure...

7.1AI score

Exploits0

Exploit DB•added 2008/10/31 12:0 a.m.•26 views

Absolute Live Support 5.1 - Insecure Cookie Handling

7.4AI score

Exploits0

ATTACKERKB•added 2008/06/18 10:41 p.m.•1 views

CVE-2008-2764

Cross-site scripting XSS vulnerability in admin/search.asp in Xigla Absolute Live Support XE 5.1 allows remote authenticated administrators to inject arbitrary web script or HTML via unspecified vectors "all fields"...

3.5CVSS5.7AI score0.00892EPSS

Exploits1References7

Prion•added 2008/06/18 10:41 p.m.•9 views

Sql injection

SQL injection vulnerability in search.asp in Xigla Absolute Live Support XE 5.1 allows remote authenticated administrators to execute arbitrary SQL commands via the orderby parameter...

6.5CVSS8.6AI score0.00986EPSS

Exploits1References5Affected Software1

NVD•added 2008/06/18 10:41 p.m.•15 views

CVE-2008-2763

SQL injection vulnerability in search.asp in Xigla Absolute Live Support XE 5.1 allows remote authenticated administrators to execute arbitrary SQL commands via the orderby parameter...

6.5CVSS7.9AI score0.00986EPSS

Exploits1References5

NVD•added 2008/06/18 10:41 p.m.•14 views

CVE-2008-2764

3.5CVSS5.3AI score0.00892EPSS

Exploits1References5

Cvelist•added 2008/06/18 10:0 p.m.•16 views

CVE-2008-2763

SQL injection vulnerability in search.asp in Xigla Absolute Live Support XE 5.1 allows remote authenticated administrators to execute arbitrary SQL commands via the orderby parameter...

7.9AI score0.00986EPSS

Exploits1References5

CVE•added 2008/06/18 10:0 p.m.•36 views

CVE-2008-2764

CVE-2008-2764 is a cross-site scripting (XSS) vulnerability in admin/search.asp of Xigla Absolute Live Support XE 5.1. The issue allows remote authenticated administrators to inject arbitrary web script or HTML via unspecified vectors in all fields. The public sources (NVD/NVD-related entries) co...

3.5CVSS5.3AI score0.00892EPSS

Exploits1References5Affected Software1

CVE•added 2008/06/18 10:0 p.m.•40 views

CVE-2008-2763

CVE-2008-2763 affects Xigla Absolute Live Support XE 5.1. A SQL injection flaw resides in search.asp reachable via the orderby parameter, allowing remote authenticated administrators to execute arbitrary SQL commands. Documented impact aligns with partial confidentiality/integrity/availability; C...

6.5CVSS8AI score0.00986EPSS

Exploits1References5Affected Software1

Cvelist•added 2008/06/18 10:0 p.m.•18 views

CVE-2008-2764

5.3AI score0.00892EPSS

Exploits1References5

Packet Storm•added 2008/06/11 12:0 a.m.•23 views

absolute-screwups.txt

www.BugReport.ir AmnPardaz Security Research Team Title: Xigla Multiple Products - Multiple Vulnerabilities Vendor: http://www.xigla.com/ Exploit: N/A Impact: Medium Fix: N/A Original Advisory: http://bugreport.ir/index.php?/41 1. Description: Xigla company has several web based products From...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by