Vulnerabilities > Egain > Chat

DATE CVE VULNERABILITY TITLE RISK
2021-07-30 CVE-2020-15948 Cross-site Scripting vulnerability in Egain Chat 15.5.5
eGain Chat 15.5.5 allows XSS via the Name (aka full_name) field.
network
egain CWE-79
4.3
4.3
2019-09-04 CVE-2019-13976 Unrestricted Upload of File with Dangerous Type vulnerability in Egain Chat 15.0.3
eGain Chat 15.0.3 allows unrestricted file upload.
network
low complexity
egain CWE-434
critical
 9.8
9.8
2019-09-04 CVE-2019-13975 Cross-site Scripting vulnerability in Egain Chat 15.0.3
eGain Chat 15.0.3 allows HTML Injection.
network
low complexity
egain CWE-79
6.1
6.1