Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2020-9387

Опубликовано: 30 апр. 2020
Источник: debian

Описание

In Mahara 19.04 before 19.04.5 and 19.10 before 19.10.3, account details are shared in the Elasticsearch results for accounts that are not accessible when the config setting 'Isolated institutions' is turned on.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
mahararemovedpackage

Связанные уязвимости

ubuntu логотип

CVE-2020-9387

CVSS3: 4.3
ubuntu
почти 6 лет назад

In Mahara 19.04 before 19.04.5 and 19.10 before 19.10.3, account details are shared in the Elasticsearch results for accounts that are not accessible when the config setting 'Isolated institutions' is turned on.

nvd логотип

CVE-2020-9387

CVSS3: 4.3
nvd
почти 6 лет назад

In Mahara 19.04 before 19.04.5 and 19.10 before 19.10.3, account details are shared in the Elasticsearch results for accounts that are not accessible when the config setting 'Isolated institutions' is turned on.

github логотип

GHSA-cmx5-q475-7cqr

github
больше 3 лет назад

In Mahara 19.04 before 19.04.5 and 19.10 before 19.10.3, account details are shared in the Elasticsearch results for accounts that are not accessible when the config setting 'Isolated institutions' is turned on.