Forums | Mahara Community

Forums /
Security Announcements


Subscribe to this forum to be notified about security fixes.

Topic Posts Last post

Closed Click Jacking Vulnerability by Account deleted

Click Jacking Vulnerability
1 09 October 2012, 23:19

by Account deleted

Closed Cross-site Scripting Vulnerability by Account deleted

Cross-site Scripting Vulnerability
1 09 October 2012, 23:17

by Account deleted

Closed Multiple Cross-site Scripting Vulnerabilities by Account deleted

Multiple Cross-site Scripting Vulnerabilities
1 09 October 2012, 23:16

by Account deleted

Closed Remote Code Execution Vulnerability by Account deleted

Remote Code Execution Vulnerability
1 09 October 2012, 23:13

by Account deleted

Closed Conclusion of the Security Bug Bounty by Kristina Hoeppner

Hello,
1 04 October 2012, 21:13

by Kristina Hoeppner

Closed XML External Entities Vulnerability in versions 1.4.3 and 1.5.2 by Account deleted

XML External Entities Vulnerability in versions...
1 13 September 2012, 20:53

by Account deleted

Closed Multiple Cross-site Scripting Vulnerabilities in versions 1.4.2 and 1.5.1 by Account deleted

Multiple Cross-site Scripting Vulnerabilities i...
1 31 July 2012, 1:45

by Account deleted

Closed Insecure defaults in SAML plugin by François Marier

This security issue only affects sites which ma...
1 15 February 2012, 20:52

by François Marier

Closed Privilege Escalation (MNet) in Mahara 1.4.0 and 1.3.6 by François Marier




Category:
Privilege Escalation


Seve...
1 03 November 2011, 17:56

by François Marier

Closed Cross-site Request Forgery in Mahara 1.4.0 and 1.3.6 by François Marier




Category:
Cross-site Request Forgery

...
1 03 November 2011, 17:52

by François Marier

Closed Cross-site Scripting in Mahara 1.4.0 and 1.3.6 by François Marier




Category:
Cross-site Scripting


Seve...
1 03 November 2011, 17:48

by François Marier

Closed Information Disclosure in Mahara 1.4.0 and 1.3.6 by François Marier




Category:
Information Disclosure


Se...
1 03 November 2011, 17:46

by François Marier

Closed Denial of Service in Mahara 1.4.0 and 1.3.6 by François Marier




Category:
Denial of Service


Severit...
1 03 November 2011, 17:42

by François Marier

Closed HTTPS downgrade in Mahara 1.2.8 and 1.3.5 by François Marier




Category:
HTTPS to HTTP downgrade


S...
1 09 May 2011, 21:06

by François Marier

Closed Cross-site scripting bugs in Mahara 1.2.8 and 1.3.5 by François Marier




Category:
Cross-site scripting


Seve...
1 09 May 2011, 21:03

by François Marier

Closed Information disclosure bugs in Mahara 1.2.8 and 1.3.5 by François Marier




Category:
Information disclosure


Se...
1 09 May 2011, 21:00

by François Marier

Closed Cross-site request forgeries in Mahara 1.2.8 and 1.3.5 by François Marier




Category:
Cross-site request forgery

...
1 09 May 2011, 20:49

by François Marier

Closed Privilege escalations in Mahara 1.2.8 and 1.3.5 by François Marier




Category:
Privilege escalation


Seve...
1 09 May 2011, 20:45

by François Marier

Closed Security fixes in HTML Purifier 4.3.0 by François Marier




Category:
Insecure bundled library


...
1 28 March 2011, 21:08

by François Marier

Closed CSRF in Mahara 1.2.6 and 1.3.3 by François Marier




Category:
Cross-site request forgery

...
1 24 March 2011, 20:15

by François Marier

Closed XSS in Mahara 1.2.6 and 1.3.3 by François Marier




Category:
Cross-site scripting


Seve...
1 24 March 2011, 20:13

by François Marier

Closed XSS in Mahara 1.3.2 by François Marier




Category:
Cross-site scripting


Seve...
1 07 November 2010, 18:58

by François Marier

Closed XSS in HTML Purifier 4.0 and earlier by François Marier




Category:
Cross-site scripting


Seve...
1 02 July 2010, 0:10

by François Marier

Closed Unsafe authentication plugin options in Mahara 1.0.14, 1.1.8 and 1.2.4 by François Marier




Category:
Unsafe auth plugin options

...
1 02 July 2010, 0:08

by François Marier

Closed SQL injection in 1.1.8 and 1.2.4 by François Marier




Category:
SQL injection


Severity:
...
1 02 July 2010, 0:05

by François Marier