CVE-2026-2545 | LigeroSmart up to 6.1.26 index.pl?Action=AgentTicketSearch Profile cross site scripting (Issue 282)

Inserito da Angelo Barbosa | Feb 15, 2026 | CVE

A vulnerability has been found in LigeroSmart up to 6.1.26 and classified as problematic. Impacted is an unknown function of the file /otrs/index.pl?Action=AgentTicketSearch. This manipulation of the argument Profile causes cross site scripting.

This vulnerability appears as CVE-2026-2545. The attack may be initiated remotely. In addition, an exploit is available.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-2545 | LigeroSmart up to 6.1.26 index.pl?Action=AgentTicketSearch Profile cross site scripting (Issue 282)

Post correlati

CVE-2025-0485 | Fanli2012 native-php-cms 1.0 sysconfig_doedit.php info cross site scripting

CVE-2024-8851 | Polls CP Plugin up to 1.0.76 on WordPress Setting cross site scripting

CVE-2025-14058 | Lenovo Tab M11 TB330FU TB330XU Control Center Settings missing authentication

CVE-2024-45789 | Reedos Software Solutions Mutual Fund Distribution Product 2.0.1 API Endpoint mode integrity check (CIVN-2024-0291)