Forums | Mahara Community

Security Announcements /
Security issue relating to XSS <1.10.0, <15.04.0


Robert Lyon's profile picture
Posts: 681

17 April 2015, 14:47

Session management issue where old sessions were not invalidating after password change.

Category: XSS
Severity: High
Versions affected: <1.10.0, <15.04.0
Reported by: Abhishek Dashora
Bug reports: https://bugs.launchpad.net/mahara/+bug/1363873

1 result