Vulnerabilities > Xigla > Absolute Control Panel XE > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-07-14 | CVE-2008-6859 | Improper Authentication vulnerability in Xigla Absolute Control Panel XE 1.5 Xigla Software Absolute Control Panel XE 1.5 allows remote attackers to bypass authentication and gain administrative access by setting a cookie to a certain value. | 7.5 |
| 2009-05-01 | CVE-2009-1504 | Improper Authentication vulnerability in Xigla Absolute Control Panel XE 1.5 Absolute Form Processor XE 1.5 allows remote attackers to bypass authentication and gain administrative access by setting the xlaAFPadmin cookie to "lvl=1&userid=1." | 7.5 |