Lucene search
MitreCVELIST:CVE-2012-6037HistoryNov 24, 2012 - 8:00 p.m.
CVE-2012-6037
2012-11-2420:00:00
mitre
www.cve.org
2
Multiple cross-site scripting (XSS) vulnerabilities in Mahara 1.4.x before 1.4.5 and 1.5.x before 1.5.4, and other versions including 1.2, allow remote attackers to inject arbitrary web script or HTML via a CSV header with “unknown fields,” which are not properly handled in error messages in the (1) bulk user, (2) group, and (3) group member upload capabilities. NOTE: this issue was originally part of CVE-2012-2243, but that ID was SPLIT due to different issues by different researchers.
Related
cve
cve
ubuntucve
ubuntucve
nvd
nvd
prion
prion
Cross site scripting
2012-11-24 20:55:00
Authentication flaw
2012-11-24 20:55:00
Cross site scripting
2012-11-24 20:55:00
openvas
openvas
Debian Security Advisory DSA 2591-1 (mahara - several vulnerabilities)
2013-09-18 00:00:00
Debian: Security Advisory (DSA-2591-1)
2013-09-18 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2591-1] mahara security update
2013-01-02 00:00:00
nessus
nessus
Debian DSA-2591-1 : mahara - several vulnerabilities
2012-12-28 00:00:00
debian
debian
[SECURITY] [DSA 2591-1] mahara security update
2012-12-28 01:08:41
cvelist
cvelist
CVE-2012-2243
2012-11-24 20:00:00
CVE-2012-2244
2012-11-24 20:00:00