3 matches found
CVE-2019-13975
CVE-2019-13975 : The supplied connected documents identify an HTML Injection vulnerability in eGain Chat 15.0.3 . The CVSS details indicate a network-accessible issue with low to moderate impact: base CVSS v3.0 score 6.1 (vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N), with no availability...
CVE-2019-13976
CVE-2019-13976 : In eGain Chat 15.0.3, an unrestricted file upload vulnerability is present. The vulnerability affects the product/component as stated, with CVSSv2/3 base scores indicating HIGH to CRITICAL impact (network-based with low attack complexity and no authentication). The available docu...
CVE-2020-15948
CVE-2020-15948 affects eGain Chat 15.5.5. The vulnerability is a reflected XSS in the Name (full_name) input due to incomplete sanitization of special characters, enabling script injection in the user context. Vendor patch released August 2020; CVSS v3.1 base score 6.1 (MEDIUM). Other scores incl...