4.4
CVSSv3

CVE-2017-1000157

Published: 03/11/2017 Updated: 13/11/2017
CVSS v2 Base Score: 3.5 | Impact Score: 2.9 | Exploitability Score: 6.8
CVSS v3 Base Score: 4.4 | Impact Score: 3.6 | Exploitability Score: 0.7
VMScore: 312
Vector: AV:N/AC:M/Au:S/C:P/I:N/A:N

Vulnerability Summary

Mahara 15.04 prior to 15.04.13 and 16.04 prior to 16.04.7 and 16.10 prior to 16.10.4 and 17.04 prior to 17.04.2 are vulnerable to recording plain text passwords in the event_log table during the user creation process if full event logging was turned on.

Vulnerable Product Search on Vulmon Subscribe to Product

mahara mahara 15.04.0

mahara mahara 15.04.2

mahara mahara 15.04.9

mahara mahara 15.04.11

mahara mahara 15.04

mahara mahara 15.04.12

mahara mahara 15.04.4

mahara mahara 15.04.5

mahara mahara 15.04.6

mahara mahara 15.04.7

mahara mahara 15.04.1

mahara mahara 15.04.3

mahara mahara 15.04.8

mahara mahara 15.04.10

mahara mahara 16.04.0

mahara mahara 16.04.2

mahara mahara 16.04

mahara mahara 16.04.4

mahara mahara 16.04.5

mahara mahara 16.04.6

mahara mahara 16.04.1

mahara mahara 16.04.3

mahara mahara 16.10

mahara mahara 16.10.1

mahara mahara 16.10.3

mahara mahara 16.10.0

mahara mahara 16.10.2

mahara mahara 17.04.1

mahara mahara 17.04

mahara mahara 17.04.0