VYPR

Agora Project

by Agora Project

CVEs (6)

  • CVE-2017-6562MedMar 9, 2017
    risk 0.40cvss 6.1epss 0.01

    XSS in Agora-Project 3.2.2 exists with an index.php?ctrl=file&targetObjId=fileFolder-2&targetObjIdChild=[XSS] attack.

  • CVE-2017-6561MedMar 9, 2017
    risk 0.40cvss 6.1epss 0.01

    XSS in Agora-Project 3.2.2 exists with an index.php?ctrl=object&action=[XSS] attack.

  • CVE-2017-6560MedMar 9, 2017
    risk 0.40cvss 6.1epss 0.01

    XSS in Agora-Project 3.2.2 exists with an index.php?ctrl=misc&action=[XSS]&editObjId=[XSS] attack.

  • CVE-2017-6559MedMar 9, 2017
    risk 0.40cvss 6.1epss 0.01

    XSS in Agora-Project 3.2.2 exists with an index.php?disconnect=1&msgNotif[]=[XSS] attack.

  • CVE-2025-67077Jan 15, 2026
    risk 0.00cvss epss 0.00

    File upload vulnerability in Omnispace Agora Project before 25.10 allowing authenticated, or under certain conditions also guest users, via the UploadTmpFile action.

  • CVE-2025-67078Jan 15, 2026
    risk 0.00cvss epss 0.00

    Cross site scripting (XSS) vulnerability in Omnispace Agora Project before 25.10 allowing attackers to execute arbitrary code via the notify parameter of the file controller used to display errors.

VYPR — Vulnerability Intelligence