Lucene search

MitreCVELIST:CVE-2022-42707

HistoryNov 06, 2022 - 12:00 a.m.

CVE-2022-42707

2022-11-0600:00:00

mitre

www.cve.org

mahara

versions

21.04

21.10

22.04

22.10

access

vulnerability

images

7.9 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.5%

JSON

In Mahara 21.04 before 21.04.7, 21.10 before 21.10.5, 22.04 before 22.04.3, and 22.10 before 22.10.0, embedded images are accessible without a sufficient permission check under certain conditions.

References

bugs.launchpad.net/mahara/+bug/1991157

mahara.org/interaction/forum/topic.php?id=9199