VYPR

agorum core

by Agorum Software GmbH

CVEs (3)

  • CVE-2025-52169HigJul 18, 2025
    risk 0.46cvss 7.1epss 0.00

    agorum Software GmbH Agorum core open v11.9.2 & v11.10.1 was discovered to contain a reflected cross-site scripting (XSS) vulnerability.

  • CVE-2025-52168MedJul 18, 2025
    risk 0.42cvss 6.5epss 0.00

    Incorrect access control in the dynawebservice component of agorum Software GmbH Agorum core open v11.9.2 & v11.10.1 allows unauthenticated attackers to access arbitrary files on the system.

  • CVE-2025-52162MedJul 18, 2025
    risk 0.42cvss 6.5epss 0.00

    agorum Software GmbH Agorum core open v11.9.2 & v11.10.1 was discovered to contain an XML External Entity (XXE) via the RSSReader endpoint. This vulnerability allows attackers to access sensitive data via providing a crafted XML input.