Filtered by vendor Xigla Subscriptions
Total 37 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2009-1504 1 Xigla 1 Absolute Control Panel Xe 2024-11-21 N/A
Absolute Form Processor XE 1.5 allows remote attackers to bypass authentication and gain administrative access by setting the xlaAFPadmin cookie to "lvl=1&userid=1."
CVE-2008-6864 1 Xigla 1 Absolute Live Support .net 2024-11-21 N/A
Xigla Software Absolute Live Support .NET 5.1 allows remote attackers to bypass authentication and gain administrative access by setting a cookie to a certain value.
CVE-2008-6863 1 Xigla 1 Absolute Form Processor.net 2024-11-21 N/A
Xigla Software Absolute Form Processor .NET 4.0 allows remote attackers to bypass authentication and gain administrative access by setting a cookie to a certain value.
CVE-2008-6862 1 Xigla 1 Absolute Content Rotator 2024-11-21 N/A
Absolute Content Rotator 6.0 allows remote attackers to bypass authentication and gain administrative access by setting a cookie to a certain value.
CVE-2008-6861 1 Xigla 1 Absolute Newsletter 2024-11-21 N/A
Xigla Software Absolute Newsletter 6.0 and 6.1 allows remote attackers to bypass authentication and gain administrative access by setting a cookie to a certain value.
CVE-2008-6860 1 Xigla 1 Absolute Poll Manager Xe 2024-11-21 N/A
Xigla Software Absolute Poll Manager XE 4.1 allows remote attackers to bypass authentication and gain administrative access by setting a cookie to a certain value.
CVE-2008-6859 1 Xigla 1 Absolute Control Panel Xe 2024-11-21 N/A
Xigla Software Absolute Control Panel XE 1.5 allows remote attackers to bypass authentication and gain administrative access by setting a cookie to a certain value.
CVE-2008-6858 1 Xigla 1 Absolute Banner Manager.net 2024-11-21 N/A
Absolute Banner Manager .NET 4.0 allows remote attackers to bypass authentication and gain administrative access by setting a cookie to a certain value.
CVE-2008-6857 1 Xigla 1 Absolute Podcast.net 2024-11-21 N/A
Absolute Podcast .NET 1.0 allows remote attackers to bypass authentication and gain administrative access by setting a cookie to a certain value.
CVE-2008-6856 1 Xigla 1 Absolute News Manager.net 2024-11-21 N/A
Xigla Software Absolute News Manager.NET 5.1 allows remote attackers to bypass authentication and gain administrative access by setting a cookie to a certain value.
CVE-2008-6855 1 Xigla 1 Absolute News Feed 2024-11-21 N/A
Xigla Software Absolute News Feed 1.0 and possibly 1.5 allows remote attackers to bypass authentication and gain administrative access by setting a certain cookie.
CVE-2008-6854 1 Xigla 1 Absolute Faq Manager .net 2024-11-21 N/A
Xigla Software Absolute FAQ Manager.NET 6.0 allows remote attackers to bypass authentication and gain administrative access by setting a cookie to a certain value.
CVE-2008-4569 1 Xigla 1 Absolute Poll Manager Xe 2024-11-21 N/A
SQL injection vulnerability in xlacomments.asp in XIGLA Software Absolute Poll Manager XE 4.1 allows remote attackers to execute arbitrary SQL commands via the p parameter.
CVE-2008-2768 1 Xigla 1 Absolute Poll Manager Xe 2024-11-21 N/A
Cross-site scripting (XSS) vulnerability in admin/search.asp in Xigla Poll Manager XE allows remote authenticated users with administrator role privileges to inject arbitrary web script or HTML via unspecified vectors ("all fields").
CVE-2008-2767 1 Xigla 1 Absolute Poll Manager Xe 2024-11-21 N/A
SQL injection vulnerability in search.asp in Xigla Poll Manager XE allows remote authenticated users with administrator role privileges to execute arbitrary SQL commands via the orderby parameter.
CVE-2008-2766 1 Xigla 1 Absolute Image Gallery Xe 2024-11-21 N/A
Cross-site scripting (XSS) vulnerability in Xigla Absolute Image Gallery XE allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in (1) admin/search.asp and (2) gallery.asp.
CVE-2008-2765 1 Xigla 1 Absolute Image Gallery Xe 2024-11-21 N/A
SQL injection vulnerability in gallery.asp in Xigla Absolute Image Gallery XE allows remote attackers to execute arbitrary SQL commands via the categoryid parameter in a viewimage action.
CVE-2008-2764 1 Xigla 1 Absolute Live Support Xe 2024-11-21 N/A
Cross-site scripting (XSS) vulnerability in admin/search.asp in Xigla Absolute Live Support XE 5.1 allows remote authenticated administrators to inject arbitrary web script or HTML via unspecified vectors ("all fields").
CVE-2008-2763 1 Xigla 1 Absolute Live Support Xe 2024-11-21 N/A
SQL injection vulnerability in search.asp in Xigla Absolute Live Support XE 5.1 allows remote authenticated administrators to execute arbitrary SQL commands via the orderby parameter.
CVE-2008-2762 1 Xigla 1 Absolute Form Processor Xe 2024-11-21 N/A
SQL injection vulnerability in search.asp in Xigla Absolute Form Processor XE 4.0 allows remote authenticated administrators to execute arbitrary SQL commands via the orderby parameter.