3 matches found
CVE-2020-15948
eGain Chat 15.5.5 allows XSS via the Name aka fullname field...
CVE-2020-15948
CVE-2020-15948 affects eGain Chat 15.5.5. The vulnerability is a reflected XSS in the Name (full_name) input due to incomplete sanitization of special characters, enabling script injection in the user context. Vendor patch released August 2020; CVSS v3.1 base score 6.1 (MEDIUM). Other scores incl...
eGain Chat 15.5.5 Cross Site Scripting
Exploit Title: eGain Chat 15.5.5 Cross-Site Scripting Vendor Homepage: https://www.egain.com/ Software Link: https://www.egain.com/chat-software/ Exploit Authors: Brandon Ming Yang Ho https://www.linkedin.com/in/minhobrandon/, Hassy Vinod Eshan https://www.linkedin.com/in/hassy-vinod/ CVE:...