Описание
Supported versions of Mahara 24.04 before 24.04.1 and 23.04 before 23.04.6 are vulnerable to information being disclosed to an institution administrator under certain conditions via the 'Current submissions' page: Administration -> Groups -> Submissions.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 23.04.0 (включая) до 23.04.6 (исключая)Версия от 24.04.0 (включая) до 24.04.1 (исключая)
Одно из
cpe:2.3:a:mahara:mahara:*:*:*:*:*:*:*:*
cpe:2.3:a:mahara:mahara:*:*:*:*:*:*:*:*
EPSS
Процентиль: 11%
0.00038
Низкий
9.1 Critical
CVSS3
Дефекты
CWE-200
Связанные уязвимости
CVSS3: 9.1
debian
6 месяцев назад
Supported versions of Mahara 24.04 before 24.04.1 and 23.04 before 23. ...
CVSS3: 9.1
github
6 месяцев назад
Supported versions of Mahara 24.04 before 24.04.1 and 23.04 before 23.04.6 are vulnerable to information being disclosed to an institution administrator under certain conditions via the 'Current submissions' page: Administration -> Groups -> Submissions.
EPSS
Процентиль: 11%
0.00038
Низкий
9.1 Critical
CVSS3
Дефекты
CWE-200