Input validation

2018-04-0920:29:00

PRIOn knowledge base

www.prio-n.com

6.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

32.3%

JSON

Mahara 16.10 before 16.10.9 and 17.04 before 17.04.7 and 17.10 before 17.10.4 are vulnerable to bad input when TinyMCE is bypassed by POST packages. Therefore, Mahara should not rely on TinyMCE’s code stripping alone but also clean input on the server / PHP side as one can create own packets of POST data containing bad content with which to hit the server.

CPENameOperatorVersion
maharage16.10
maharalt16.10.9
maharage17.04
maharalt17.04.7
maharage17.10
maharalt17.10.4

Name	Operator	Version
mahara	ge	16.10
mahara	lt	16.10.9
mahara	ge	17.04
mahara	lt	17.04.7
mahara	ge	17.10
mahara	lt	17.10.4

References

bugs.launchpad.net/mahara/+bug/1744789

mahara.org/interaction/forum/topic.php?id=8215