Mahara 15.04 prior to 15.04.7 and 15.10 prior to 15.10.3 running PHP 5.3 are vulnerable to one user being logged in as another user on a separate computer as the same session ID is served. This situation can occur when a user takes an action that forces another user to be logged out of Mahara, such as an admin changing another user's account settings.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mahara mahara 15.04 |
||
mahara mahara 15.04.0 |
||
mahara mahara 15.04.5 |
||
mahara mahara 15.04.1 |
||
mahara mahara 15.04.2 |
||
mahara mahara 15.04.3 |
||
mahara mahara 15.04.4 |
||
mahara mahara 15.04.6 |
||
mahara mahara 15.10.1 |
||
mahara mahara 15.10.2 |
||
mahara mahara 15.10.0 |