CVE-2008-2764

Name of the Vulnerable Software and Affected Versions Xigla Absolute Live Support XE version 5.1

Description A cross-site scripting (XSS) issue exists, allowing remote authenticated administrators to inject arbitrary web script or HTML via all fields in the admin/search.asp file.

Recommendations For Xigla Absolute Live Support XE version 5.1, consider restricting access to the admin/search.asp file until a patch is available, and avoid using all fields in this file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.