CVE-2026-1049

Medium CVSS: 5.1

A security vulnerability has been detected in LigeroSmart up to 6.1.26. The affected element is an unknown function of the file /otrs/index.pl. Such manipulation of the argument TicketID leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may be used. The project was informed of the problem early through an issue report but has not responded yet.

Vendor

Ligerosmart

Product

Ligerosmart

CWE

CWE-79

Yayın Tarihi

2026-01-17 18:15:48

Güncelleme

2026-02-27 03:51:36

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-79 Ligerosmart MEDIUM Ligerosmart 2026

Referanslar

https://github.com/LigeroSmart/ligerosmart/ https://github.com/LigeroSmart/ligerosmart/issues/280 https://github.com/LigeroSmart/ligerosmart/issues/280#issue-3776580352 https://vuldb.com/?ctiid.341601 https://vuldb.com/?id.341601 https://vuldb.com/?submit.729402 https://vuldb.com/?submit.746919

Benzer Kayıtlar

Medium

CVE-2026-2546

A security vulnerability has been detected in LigeroSmart up to 6.1.26. The affected element is an unknown function of t…

Medium

CVE-2026-2547

A vulnerability was detected in LigeroSmart up to 6.1.26. The impacted element is the function AgentDashboard of the fil…

Medium

CVE-2026-2545

A weakness has been identified in LigeroSmart up to 6.1.26. Impacted is an unknown function of the file /otrs/index.pl?A…

Medium

CVE-2026-1048

A weakness has been identified in LigeroSmart up to 6.1.26. Impacted is an unknown function of the file /otrs/index.pl?A…

Medium

CVE-2025-15437

A vulnerability was found in LigeroSmart up to 6.1.24. This affects an unknown part of the component Environment Variabl…