CVE-2008-2756

Name of the Vulnerable Software and Affected Versions Xigla Absolute Control Panel XE version 1.0

Description A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is achieved via the name parameter and other unspecified parameters in the admin/users.asp file.

Recommendations For Xigla Absolute Control Panel XE version 1.0, consider restricting access to the admin/users.asp file until a fix is available, and avoid using the name parameter in this context to minimize the risk of exploitation.