Mahara 15.04 prior to 15.04.14 and 16.04 prior to 16.04.8 and 16.10 prior to 16.10.5 and 17.04 prior to 17.04.3 are vulnerable to a user submitting potential dangerous payload, e.g. XSS code, to be saved as their name in the usr_registration table. The values are then emailed to the the user and administrator and if accepted become part of the new user's account.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mahara mahara 15.04.10 |
||
mahara mahara 15.04.9 |
||
mahara mahara 15.04.8 |
||
mahara mahara 15.04.7 |
||
mahara mahara 15.04 |
||
mahara mahara 15.04.2 |
||
mahara mahara 15.04.1 |
||
mahara mahara 15.04.0 |
||
mahara mahara 15.04.12 |
||
mahara mahara 15.04.5 |
||
mahara mahara 15.04.3 |
||
mahara mahara 15.04.13 |
||
mahara mahara 15.04.11 |
||
mahara mahara 15.04.6 |
||
mahara mahara 15.04.4 |
||
mahara mahara 16.04.2 |
||
mahara mahara 16.04.3 |
||
mahara mahara 16.04.4 |
||
mahara mahara 16.04.5 |
||
mahara mahara 16.04.6 |
||
mahara mahara 16.04 |
||
mahara mahara 16.04.0 |
||
mahara mahara 16.04.7 |
||
mahara mahara 16.04.1 |
||
mahara mahara 16.10.0 |
||
mahara mahara 16.10.1 |
||
mahara mahara 16.10.2 |
||
mahara mahara 16.10.3 |
||
mahara mahara 16.10 |
||
mahara mahara 16.10.4 |
||
mahara mahara 17.04.0 |
||
mahara mahara 17.04.1 |
||
mahara mahara 17.04.2 |
||
mahara mahara 17.04 |