Forums | Mahara Community

Security Announcements /
Security issue relating to PHP injection <15.04.8, <15.10.4, <16.04.2


Aaron Wells's profile picture
Posts: 896

11 July 2016, 5:10 PM

When importing a Skin from an XML file, Mahara would pass portions of the XML through the PHP "unserialize()" function. An attacker might be able to use this to cause PHP code to execute on the server. (See http://php.net/manual/en/function.unserialize.php#refsect1-function.unserialize-notes )

Category: PHP injection
Severity: Critical
Versions affected: <15.04.8, <15.10.4, <16.04.2
Reported by: Son Nguyen
Bug reports: https://bugs.launchpad.net/mahara/+bug/1508684
CVE reference: 2017-1000148

Edits to this post:
1 result