CVE-2026-2547
LigeroSmart up to version 6.1.26 is affected. The vulnerable component is AgentDashboard in /otrs/index.pl, where manipulating the Subaction argument triggers cross-site scripting. Remote exploitation is possible, and the exploit is publicly available. No remediation details are provided in the s...