CVE-2020-36926
- EPSS 0.06%
- Veröffentlicht 15.01.2026 23:25:33
- Zuletzt bearbeitet 09.02.2026 15:12:37
SmarterTrack 7922 contains an information disclosure vulnerability in the Chat Management search form that reveals agent identification details. Attackers can access the vulnerable /Management/Chat/frmChatSearch.aspx endpoint to retrieve agents' firs...
CVE-2022-24384
- EPSS 48.03%
- Veröffentlicht 14.03.2022 13:15:07
- Zuletzt bearbeitet 21.11.2024 06:50:18
Cross-site Scripting (XSS) vulnerability in SmarterTools SmarterTrack This issue affects: SmarterTools SmarterTrack 100.0.8019.14010.
CVE-2022-24385
- EPSS 0.29%
- Veröffentlicht 14.03.2022 13:15:07
- Zuletzt bearbeitet 21.11.2024 06:50:18
A Direct Object Access vulnerability in SmarterTools SmarterTrack leads to information disclosure This issue affects: SmarterTools SmarterTrack 100.0.8019.14010.
CVE-2022-24386
- EPSS 0.38%
- Veröffentlicht 14.03.2022 13:15:07
- Zuletzt bearbeitet 21.11.2024 06:50:18
Stored XSS in SmarterTools SmarterTrack This issue affects: SmarterTools SmarterTrack 100.0.8019.14010.
CVE-2022-24387
- EPSS 0.61%
- Veröffentlicht 14.03.2022 13:15:07
- Zuletzt bearbeitet 21.11.2024 06:50:18
With administrator or admin privileges the application can be tricked into overwriting files in app_data/Config folder, e.g. the systemsettings.xml file. THis is possible in SmarterTrack v100.0.8019.14010
CVE-2009-4994
- EPSS 0.3%
- Veröffentlicht 25.08.2010 20:00:16
- Zuletzt bearbeitet 11.04.2025 00:51:21
Cross-site scripting (XSS) vulnerability in frmKBSearch.aspx in SmarterTools SmarterTrack before 4.0.3504 allows remote attackers to inject arbitrary web script or HTML via the search parameter.
CVE-2009-4995
- EPSS 0.26%
- Veröffentlicht 25.08.2010 20:00:16
- Zuletzt bearbeitet 11.04.2025 00:51:21
Cross-site scripting (XSS) vulnerability in frmTickets.aspx in SmarterTools SmarterTrack before 4.0.3504 allows remote attackers to inject arbitrary web script or HTML via the email address field. NOTE: the provenance of this information is unknown;...