CVE-2020-36926

Medium CVSS: 6.9

SmarterTrack 7922 contains an information disclosure vulnerability in the Chat Management search form that reveals agent identification details. Attackers can access the vulnerable /Management/Chat/frmChatSearch.aspx endpoint to retrieve agents' first and last names along with their unique identifiers.

Vendor

Smartertools

Product

Smartertrack

CWE

CWE-497

Yayın Tarihi

2026-01-16 00:16:18

Güncelleme

2026-02-09 15:12:37

Source Identifier

disclosure@vulncheck.com

KEV Date Added

Kategoriler

CWE-497 Smartertrack MEDIUM Smartertools 2026

Referanslar

https://www.exploit-db.com/exploits/50328 https://www.smartertools.com/ https://www.smartertools.com/smartertrack https://www.vulncheck.com/advisories/smartertools-smartertrack-information-disclosure https://www.exploit-db.com/exploits/50328

Benzer Kayıtlar

Medium

CVE-2026-25067

SmarterTools SmarterMail versions prior to build 9518 contain an unauthenticated path coercion vulnerability in the bac…

Critical

CVE-2026-24423

SmarterTools SmarterMail versions prior to build 9511 contain an unauthenticated remote code execution vulnerability in…

Critical

CVE-2026-23760

SmarterTools SmarterMail versions prior to build 9511 contain an authentication bypass vulnerability in the password res…

Critical

CVE-2025-52691

Successful exploitation of the vulnerability could allow an unauthenticated attacker to upload arbitrary files to any lo…