Описание
Multiple cross-site scripting (XSS) vulnerabilities in Mahara 1.0 before 1.0.10 and 1.1 before 1.1.2 allow remote attackers to inject arbitrary web script or HTML via a (1) profile and (2) blog, a different vulnerability than CVE-2009-0487.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 1.2.0-2 |
| gutsy | DNE | |
| hardy | DNE | |
| intrepid | ignored | end of life, was needed |
| jaunty | released | 1.0.9-2ubuntu0.2 |
| karmic | not-affected | 1.1.5-1ubuntu0.1 |
| upstream | released | 1.0.10, 1.1.2 |
Показывать по
Ссылки на источники
4.3 Medium
CVSS2
Связанные уязвимости
Multiple cross-site scripting (XSS) vulnerabilities in Mahara 1.0 before 1.0.10 and 1.1 before 1.1.2 allow remote attackers to inject arbitrary web script or HTML via a (1) profile and (2) blog, a different vulnerability than CVE-2009-0487.
Multiple cross-site scripting (XSS) vulnerabilities in Mahara 1.0 befo ...
Multiple cross-site scripting (XSS) vulnerabilities in Mahara 1.0 before 1.0.10 and 1.1 before 1.1.2 allow remote attackers to inject arbitrary web script or HTML via a (1) profile and (2) blog, a different vulnerability than CVE-2009-0487.
4.3 Medium
CVSS2