Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mahara mahara vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2017-1000141
An issue exists in Mahara prior to 18.10.0. It mishandled user requests that could discontinue a user's ability to maintain their own account (changing username, changing primary email address, deleting account). The correct behavior was to either prompt them for their passw...
Mahara Mahara
4.3
CVSSv2
CVE-2017-1000136
Mahara 1.8 prior to 1.8.6 and 1.9 prior to 1.9.4 and 1.10 prior to 1.10.1 and 15.04 prior to 15.04.0 are vulnerable to old sessions not being invalidated after a password change.
Mahara Mahara 1.8.5
Mahara Mahara 1.8.0
Mahara Mahara 1.8
Mahara Mahara 1.8.2
Mahara Mahara 1.8.4
Mahara Mahara 1.8.1
Mahara Mahara 1.8.3
Mahara Mahara 1.9
Mahara Mahara 1.9.2
Mahara Mahara 1.9.0
Mahara Mahara 1.9.1
Mahara Mahara 1.9.3
Mahara Mahara 1.10
Mahara Mahara 1.10.0
Mahara Mahara 15.04
4
CVSSv2
CVE-2017-1000143
Mahara 1.8 prior to 1.8.7 and 1.9 prior to 1.9.5 and 1.10 prior to 1.10.3 and 15.04 prior to 15.04.0 are vulnerable to users receiving watchlist notifications about pages they do not have access to anymore.
Mahara Mahara 1.8.6
Mahara Mahara 1.8.1
Mahara Mahara 1.8.2
Mahara Mahara 1.8.4
Mahara Mahara 1.8.0
Mahara Mahara 1.8
Mahara Mahara 1.8.3
Mahara Mahara 1.8.5
Mahara Mahara 1.9
Mahara Mahara 1.9.1
Mahara Mahara 1.9.3
Mahara Mahara 1.9.4
Mahara Mahara 1.9.2
Mahara Mahara 1.9.0
Mahara Mahara 1.10.1
Mahara Mahara 1.10.2
Mahara Mahara 1.10
Mahara Mahara 1.10.0
Mahara Mahara 15.04
3.5
CVSSv2
CVE-2017-1000144
Mahara 1.9 prior to 1.9.6 and 1.10 prior to 1.10.4 and 15.04 prior to 15.04.1 are vulnerable to a site admin or institution admin being able to place HTML and Javascript into an institution display name, which will be displayed to other users unescaped on some Mahara system pages...
Mahara Mahara 1.9.3
Mahara Mahara 1.9
Mahara Mahara 1.9.4
Mahara Mahara 1.9.5
Mahara Mahara 1.9.1
Mahara Mahara 1.9.2
Mahara Mahara 1.9.0
Mahara Mahara 1.10.1
Mahara Mahara 1.10.2
Mahara Mahara 1.10.3
Mahara Mahara 1.10
Mahara Mahara 1.10.0
Mahara Mahara 15.04
Mahara Mahara 15.04.0
3.5
CVSSv2
CVE-2017-1000149
Mahara 1.10 prior to 1.10.9 and 15.04 prior to 15.04.6 and 15.10 prior to 15.10.2 are vulnerable to XSS due to window.opener (target="_blank" and window.open())
Mahara Mahara 15.10.1
Mahara Mahara 15.10.0
Mahara Mahara 15.10
Mahara Mahara 1.10.3
Mahara Mahara 1.10.4
Mahara Mahara 1.10.5
Mahara Mahara 1.10.6
Mahara Mahara 1.10.2
Mahara Mahara 1.10.7
Mahara Mahara 1.10
Mahara Mahara 1.10.1
Mahara Mahara 1.10.8
Mahara Mahara 1.10.0
Mahara Mahara 15.04
Mahara Mahara 15.04.5
Mahara Mahara 15.04.1
Mahara Mahara 15.04.2
Mahara Mahara 15.04.3
Mahara Mahara 15.04.4
Mahara Mahara 15.04.0
7.5
CVSSv2
CVE-2017-1000154
Mahara 15.04 prior to 15.04.8 and 15.10 prior to 15.10.4 and 16.04 prior to 16.04.2 are vulnerable to some authentication methods, which do not use Mahara's built-in login form, still allowing users to log in even if their institution was expired or suspended.
Mahara Mahara 15.04.1
Mahara Mahara 15.04.3
Mahara Mahara 15.04
Mahara Mahara 15.04.4
Mahara Mahara 15.04.5
Mahara Mahara 15.04.6
Mahara Mahara 15.04.7
Mahara Mahara 15.04.0
Mahara Mahara 15.04.2
Mahara Mahara 16.04
Mahara Mahara 16.04.1
Mahara Mahara 16.04.0
Mahara Mahara 15.10.3
Mahara Mahara 15.10.0
Mahara Mahara 15.10.1
Mahara Mahara 15.10.2
3.5
CVSSv2
CVE-2017-1000140
Mahara 1.8 prior to 1.8.7 and 1.9 prior to 1.9.5 and 1.10 prior to 1.10.3 and 15.04 prior to 15.04.0 are vulnerable to a maliciously created .xml file that can have its code executed when user tries to download the file.
Mahara Mahara 1.8
Mahara Mahara 1.8.6
Mahara Mahara 1.8.1
Mahara Mahara 1.8.2
Mahara Mahara 1.8.4
Mahara Mahara 1.8.0
Mahara Mahara 1.8.3
Mahara Mahara 1.8.5
Mahara Mahara 1.9
Mahara Mahara 1.9.1
Mahara Mahara 1.9.3
Mahara Mahara 1.9.4
Mahara Mahara 1.9.2
Mahara Mahara 1.9.0
Mahara Mahara 1.10.1
Mahara Mahara 1.10.2
Mahara Mahara 1.10.0
Mahara Mahara 1.10
Mahara Mahara 15.04
6.5
CVSSv2
CVE-2017-1000150
Mahara 15.04 prior to 15.04.7 and 15.10 prior to 15.10.3 are vulnerable to prevent session IDs from being regenerated on login or logout. This makes users of the site more vulnerable to session fixation attacks.
Mahara Mahara 15.04.4
Mahara Mahara 15.04
Mahara Mahara 15.04.0
Mahara Mahara 15.04.1
Mahara Mahara 15.04.2
Mahara Mahara 15.04.6
Mahara Mahara 15.04.3
Mahara Mahara 15.04.5
Mahara Mahara 15.10.0
Mahara Mahara 15.10.1
Mahara Mahara 15.10.2
4
CVSSv2
CVE-2017-1000131
Mahara 15.04 prior to 15.04.8 and 15.10 prior to 15.10.4 and 16.04 prior to 16.04.2 are vulnerable to users staying logged in to their Mahara account even when they have been logged out of Moodle (when using MNet) as Mahara did not properly implement one of the MNet SSO API funct...
Mahara Mahara 15.04
Mahara Mahara 15.04.6
Mahara Mahara 15.04.7
Mahara Mahara 15.04.3
Mahara Mahara 15.04.5
Mahara Mahara 15.04.0
Mahara Mahara 15.04.1
Mahara Mahara 15.04.2
Mahara Mahara 15.04.4
Mahara Mahara 16.04
Mahara Mahara 16.04.1
Mahara Mahara 16.04.0
Mahara Mahara 15.10.0
Mahara Mahara 15.10.1
Mahara Mahara 15.10.2
Mahara Mahara 15.10.3
3.5
CVSSv2
CVE-2017-1000132
Mahara 1.8 prior to 1.8.7 and 1.9 prior to 1.9.5 and 1.10 prior to 1.10.3 and 15.04 prior to 15.04.0 are vulnerable to a maliciously created .swf files that can have its code executed when a user tries to download the file.
Mahara Mahara 1.8.4
Mahara Mahara 1.8.0
Mahara Mahara 1.8
Mahara Mahara 1.8.6
Mahara Mahara 1.8.1
Mahara Mahara 1.8.2
Mahara Mahara 1.8.3
Mahara Mahara 1.8.5
Mahara Mahara 1.9.4
Mahara Mahara 1.9.1
Mahara Mahara 1.9.2
Mahara Mahara 1.9.3
Mahara Mahara 1.9
Mahara Mahara 1.9.0
Mahara Mahara 1.10.1
Mahara Mahara 1.10.2
Mahara Mahara 1.10
Mahara Mahara 1.10.0
Mahara Mahara 15.04
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »