Описание
Mahara 15.04 before 15.04.8 and 15.10 before 15.10.4 and 16.04 before 16.04.2 are vulnerable to a user - in some circumstances causing another user's artefacts to be included in a Leap2a export of their own pages.
Ссылки
- Issue TrackingPatchThird Party Advisory
- Issue TrackingPatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:mahara:mahara:15.04:rc1:*:*:*:*:*:*
cpe:2.3:a:mahara:mahara:15.04:rc2:*:*:*:*:*:*
cpe:2.3:a:mahara:mahara:15.04.0:*:*:*:*:*:*:*
cpe:2.3:a:mahara:mahara:15.04.1:*:*:*:*:*:*:*
cpe:2.3:a:mahara:mahara:15.04.2:*:*:*:*:*:*:*
cpe:2.3:a:mahara:mahara:15.04.3:*:*:*:*:*:*:*
cpe:2.3:a:mahara:mahara:15.04.4:*:*:*:*:*:*:*
cpe:2.3:a:mahara:mahara:15.04.5:*:*:*:*:*:*:*
cpe:2.3:a:mahara:mahara:15.04.6:*:*:*:*:*:*:*
cpe:2.3:a:mahara:mahara:15.04.7:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:a:mahara:mahara:16.04:rc1:*:*:*:*:*:*
cpe:2.3:a:mahara:mahara:16.04:rc2:*:*:*:*:*:*
cpe:2.3:a:mahara:mahara:16.04.0:*:*:*:*:*:*:*
cpe:2.3:a:mahara:mahara:16.04.1:*:*:*:*:*:*:*
Конфигурация 3
Одно из
cpe:2.3:a:mahara:mahara:15.10.0:*:*:*:*:*:*:*
cpe:2.3:a:mahara:mahara:15.10.1:*:*:*:*:*:*:*
cpe:2.3:a:mahara:mahara:15.10.2:*:*:*:*:*:*:*
cpe:2.3:a:mahara:mahara:15.10.3:*:*:*:*:*:*:*
EPSS
Процентиль: 48%
0.00251
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
CVSS3: 7.5
debian
больше 8 лет назад
Mahara 15.04 before 15.04.8 and 15.10 before 15.10.4 and 16.04 before ...
CVSS3: 7.5
github
больше 3 лет назад
Mahara 15.04 before 15.04.8 and 15.10 before 15.10.4 and 16.04 before 16.04.2 are vulnerable to a user - in some circumstances causing another user's artefacts to be included in a Leap2a export of their own pages.
EPSS
Процентиль: 48%
0.00251
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-200