Forums | Mahara Community
XSS in Mahara 1.0.10 and 1.1.2
22 April 2009, 1:03 AM
|Versions affected:||< 1.0.11, < 1.1.3|
|Reported by:||Mahara Team|
Cross-site scripting vulnerabilities have been found in the "introduction" user profile field as well as in text blocks in user views.
Upgrading to Mahara 1.0.11 or 1.1.3 is strongly recommended for all sites.