GCVE - cpe:2.3:a:n/a:ligerosmart:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:ligerosmart:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	N/A (`22f567d3-1203-528c-8f0e-3eb9c2f6ca78`)
Product	Ligerosmart (`ff50bb50-dd39-5914-bd63-63d298f60b07`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2026-2547`	vulnerable	2026-06-08 07:55:17.201364	LigeroSmart index.pl AgentDashboard cross site scripting LOW (3.5) A vulnerability was detected in LigeroSmart up to 6.1.26. The impacted element is the function AgentDashboard of the file /otrs/index.pl. Performing a manipulation of the argument Subaction results in cross site scripting. Remote exploitation of the attack is possible. The exploit is now public and may be used. The project was informed of the problem early through an issue report but has not responded yet. Published: 2026-02-16T08:32:07.484Z Updated: 2026-02-23T10:07:40.765Z Open on db.gcve.eu Reference links https://vuldb.com/?id.346156 https://vuldb.com/?ctiid.346156 https://vuldb.com/?submit.749788 https://github.com/LigeroSmart/ligerosmart/issues/284 https://github.com/LigeroSmart/ligerosmart/issues/284#issue-3879280231	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2026-2546`	vulnerable	2026-06-08 07:55:17.200874	LigeroSmart index.pl cross site scripting LOW (3.5) A security vulnerability has been detected in LigeroSmart up to 6.1.26. The affected element is an unknown function of the file /otrs/index.pl. Such manipulation of the argument SortBy leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed publicly and may be used. The project was informed of the problem early through an issue report but has not responded yet. Published: 2026-02-16T08:02:07.017Z Updated: 2026-02-23T10:07:28.179Z Open on db.gcve.eu Reference links https://vuldb.com/?id.346155 https://vuldb.com/?ctiid.346155 https://vuldb.com/?submit.749784 https://github.com/LigeroSmart/ligerosmart/issues/283 https://github.com/LigeroSmart/ligerosmart/issues/283#issue-3879199951	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2026-2545`	vulnerable	2026-06-08 07:55:17.199648	LigeroSmart index.pl cross site scripting LOW (3.5) A weakness has been identified in LigeroSmart up to 6.1.26. Impacted is an unknown function of the file /otrs/index.pl?Action=AgentTicketSearch. This manipulation of the argument Profile causes cross site scripting. The attack may be initiated remotely. The exploit has been made available to the public and could be used for attacks. The project was informed of the problem early through an issue report but has not responded yet. Published: 2026-02-16T07:32:08.515Z Updated: 2026-02-23T10:07:15.711Z Open on db.gcve.eu Reference links https://vuldb.com/?id.346154 https://vuldb.com/?ctiid.346154 https://vuldb.com/?submit.749758 https://github.com/LigeroSmart/ligerosmart/issues/282 https://github.com/LigeroSmart/ligerosmart/issues/282#issue-3879165194	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2026-1049`	vulnerable	2026-06-08 07:47:14.262033	LigeroSmart index.pl cross site scripting LOW (3.5) A security vulnerability has been detected in LigeroSmart up to 6.1.26. The affected element is an unknown function of the file /otrs/index.pl. Such manipulation of the argument TicketID leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may be used. The project was informed of the problem early through an issue report but has not responded yet. Published: 2026-01-17T17:32:05.916Z Updated: 2026-02-26T15:56:50.721Z Open on db.gcve.eu Reference links https://vuldb.com/?id.341601 https://vuldb.com/?ctiid.341601 https://vuldb.com/?submit.729402 https://vuldb.com/?submit.746919 https://github.com/LigeroSmart/ligerosmart/issues/280	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2026-1048`	vulnerable	2026-06-08 07:47:14.260472	LigeroSmart index.pl cross site scripting LOW (3.5) A weakness has been identified in LigeroSmart up to 6.1.26. Impacted is an unknown function of the file /otrs/index.pl?Action=AgentTicketZoom. This manipulation of the argument TicketID causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been made available to the public and could be used for attacks. The project was informed of the problem early through an issue report but has not responded yet. Published: 2026-01-17T17:02:06.534Z Updated: 2026-02-26T15:57:18.484Z Open on db.gcve.eu Reference links https://vuldb.com/?id.341600 https://vuldb.com/?ctiid.341600 https://vuldb.com/?submit.729399 https://github.com/LigeroSmart/ligerosmart/issues/279 https://github.com/LigeroSmart/ligerosmart/issues/279#issue-3775562926	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-15437`	vulnerable	2026-06-08 07:06:36.238231	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.