Vulnerabilities > Xigla > Absolute Live Support XE > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-06-18 | CVE-2008-2763 | SQL Injection vulnerability in Xigla Absolute Live Support XE 5.1 SQL injection vulnerability in search.asp in Xigla Absolute Live Support XE 5.1 allows remote authenticated administrators to execute arbitrary SQL commands via the orderby parameter. | 6.5 |
| 2006-03-28 | CVE-2006-1410 | HTML Injection vulnerability in Xigla Absolute Live Support XE 2.0 Multiple cross-site scripting (XSS) vulnerabilities in XIGLA Absolute Live Support XE 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) Screen name or (2) Session Topic field. network xigla | 4.3 |