CVE-2009-0660
CVE-2009-0660 affects Mahara: XSS in Mahara 1.0 before 1.0.10 and 1.1 before 1.1.2, enabling remote injection via the profile and blog fields. Root cause cited as insufficient input sanitising. Versions fixed: 1.0.10 and 1.1.2 (per NVD/related advisories); Debian/DSA notes show 1.0.4-4+lenny1 as ...