Mahara Community

Forums | Mahara Community

Security Announcements /
Cross-site Scripting Vulnerability < 1.5.7, < 1.6.2

This topic is closed. Only moderators and the group administrators can post new replies.
anonymous profile picture
Account deleted
Posts: 48

23 November 2012, 16:01 

Cross-site Scripting Vulnerability

Category: Cross-site Scripting
Severity: High
Versions affected: < 1.5.7, < 1.6.2
Reported by: Sergey
Identifier: CVE-2012-2253
Bug report: https://bugs.launchpad.net/mahara/+bug/1079498

A high security cross-site scripting vulnerability was discovered. The vulnerability has been fixed by the Mahara core developers.

Upgrading to Mahara 1.5.7 or 1.6.2 is strongly recommended.

Download links for fixed versions:
    https://launchpad.net/mahara/+milestone/1.5.7 
    https://launchpad.net/mahara/+milestone/1.6.2

Edits to this post:

  • anonymous profile picture Account deleted 23 November 2012, 16:17
anonymous profile picture
Account deleted
Posts: 197

Re: Cross-site Scripting Vulnerability < 1.5.7, < 1.6.2

23 November 2012, 16:16

Released with 1.6.2 and 1.5.7: https://mahara.org/interaction/forum/topic.php?id=5077

2 results