6 matches found
EUVD-2024-54914
Malicious code in bioql PyPI...
CVE-2024-47192
An issue was discovered in Mahara 23.04.8 and 24.04.4. The use of a malicious export download URL can allow an attacker to download files that they do not have permission to download...
CVE-2024-47853
An issue was discovered in Mahara 23.04.8 and 24.04.4. Attackers may utilize escalation of privileges in certain cases when logging into Mahara with Learning Tools Interoperability LTI...
CVE-2024-45753
In Mahara 23.04.8 and 24.04.4, the external RSS feed block can cause XSS if the external feed XML has a malicious value for the link attribute...
CVE-2024-47192
An issue was discovered in Mahara 23.04.8 and 24.04.4. The use of a malicious export download URL can allow an attacker to download files that they do not have permission to download...
PT-2025-34770 · Mahara +1 · Mahara +1
Name of the Vulnerable Software and Affected Versions: Mahara versions 23.04.8 and 24.04.4 Description: An issue was discovered that may allow attackers to escalate privileges in certain cases when logging into Mahara with Learning Tools Interoperability LTI. Recommendations: Update to a newer...