Cross site scripting (XSS) vulnerability in Omnispace Agora Project before 25.10 allowing attackers to execute arbitrary code via the notify parameter of the file controller used to display errors.Referenceshttps://www.agora-project.nethttps://www.helx.io/blog/advisory-agora-project/
