Information disclosure

2019-05-0717:29:00

PRIOn knowledge base

www.prio-n.com

4.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

29.1%

JSON

An issue was discovered in Mahara 17.10 before 17.10.8, 18.04 before 18.04.4, and 18.10 before 18.10.1. A site administrator can suspend the system user (root), causing all users to be locked out from the system.

CPENameOperatorVersion
maharage18.10.0
maharalt18.10.1
maharage18.04.0
maharalt18.04.4
maharage17.10.0
maharalt17.10.8

Name	Operator	Version
mahara	ge	18.10.0
mahara	lt	18.10.1
mahara	ge	18.04.0
mahara	lt	18.04.4
mahara	ge	17.10.0
mahara	lt	17.10.8

References

bugs.launchpad.net/mahara/+bug/1817221

mahara.org/interaction/forum/topic.php?id=8445