Forums | Mahara Community

Security Announcements /
Cross-site Scripting vulnerability in Mahara <1.5.8 and <1.6.3

This topic is closed. Only moderators and the group administrators can post new replies.
anonymous profile picture
Account deleted
Posts: 197

15 February 2013, 16:38

Cross-site Scripting Vulnerability

Category: Cross-site Scripting
Severity: Medium
Versions affected: < 1.6.3, < 1.5.8
Reported by: M.R.Vignesh Kumar
Identifier: CVE-2012-2254
Bug report:

An important cross-site scripting vulnerability was discovered. The vulnerability has been fixed by the Mahara core developers.

Upgrading to Mahara 1.5.8 or 1.6.3 is strongly recommended.

Download links for fixed versions:

1 result