VULHUB ™

It has been reported that W-Agora may be prone to multiple vulnerabilities resulting from insufficient sanitization of user-supplied input. The software is reportedly vulnerable to cross-site scripting and remote file include attacks. Successful exploitation of these issues may allow a remote attacker to steal cookie-based authentication credentials or include malicious scripts to be executed on a vulnerable system. W-Agora version 4.1.5 has been reported to be prone to this issue, however other versions may be affected as well. These issues are currently undergoing further analysis. This cumulative BID will be separated into individual entries when analysis is complete.

It has been reported that W-Agora may be prone to multiple vulnerabilities resulting from insufficient sanitization of user-supplied input. The software is reportedly vulnerable to cross-site scripting and remote file include attacks. Successful exploitation of these issues may allow a remote attacker to steal cookie-based authentication credentials or include malicious scripts to be executed on a vulnerable system. W-Agora version 4.1.5 has been reported to be prone to this issue, however other versions may be affected as well. These issues are currently undergoing further analysis. This cumulative BID will be separated into individual entries when analysis is complete.