Mahara 1.10 prior to 1.10.0 and 15.04 prior to 15.04.0 are vulnerable to possible cross site scripting when dragging/dropping files into a collection if the file has Javascript code in its title.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mahara mahara 1.10 |
||
mahara mahara 15.04 |