Forums | Mahara Community

Security Announcements /
Security issue relating to XSS <1.10.0, <15.04.0


Robert Lyon's profile picture
Posts: 749

17 April 2015, 14:46

Possible cross site scripting when adding text block to page via the accessibility way (click on item rather than drag/drop).

Category: XSS
Severity: High
Versions affected: <1.10.0, <15.04.0
Reported by: Simon Coggins
Bug reports: https://bugs.launchpad.net/mahara/+bug/1375092
CVE reference: 2017-1000137

Edits to this post:

1 result