exploitDog

GHSA-5c4g-2g7f-vp3x

Опубликовано: 15 янв. 2026

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

File upload vulnerability in Omnispace Agora Project before 25.10 allowing authenticated, or under certain conditions also guest users, via the UploadTmpFile action.

File upload vulnerability in Omnispace Agora Project before 25.10 allowing authenticated, or under certain conditions also guest users, via the UploadTmpFile action.

Ссылки

EPSS

Процентиль: 15%

0.00047

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-434

Связанные уязвимости

CVE-2025-67077

CVSS3: 8.8

nvd

23 дня назад

File upload vulnerability in Omnispace Agora Project before 25.10 allowing authenticated, or under certain conditions also guest users, via the UploadTmpFile action.

EPSS

Процентиль: 15%

0.00047

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-434