CVE-2017-6559
The CVE-2017-6559 entry documents a cross-site scripting (XSS) flaw in Agora-Project 3.2.2. The vulnerable vector is index.php?disconnect=1&msgNotif[]=[XSS], where user-supplied data is reflected into the page without sufficient sanitization. The impact is indicated as low confidentiality and low...