Lucene search
K

8 matches found

OpenVAS
OpenVAS
added 2010/04/21 12:0 a.m.16 views

Debian Security Advisory DSA 2030-1 (mahara)

The remote host is missing an update to mahara announced via advisory DSA 2030-1. OpenVAS Vulnerability Test $Id: deb20301.nasl 6614 2017-07-07 12:09:12Z cfischer $ Description: Auto-generated from advisory DSA 2030-1 mahara Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...

7.5CVSS6.5AI score0.01717EPSS
Exploits0
OpenVAS
OpenVAS
added 2010/04/21 12:0 a.m.17 views

FreeBSD Ports: mahara

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2010 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

7.5CVSS6.4AI score0.01717EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2010/04/09 12:0 a.m.34 views

Debian DSA-2030-1 : mahara - sql injection

It was discovered that mahara, an electronic portfolio, weblog, and resume builder is not properly escaping input when generating a unique username based on a remote user name from a single sign-on application. An attacker can use this to compromise the mahara database via crafted user names...

7.5CVSS5.6AI score0.01717EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2010/04/07 3:30 p.m.20 views

CVE-2010-0400

SQL injection vulnerability in lib/user.php in mahara 1.0.4 allows remote attackers to execute arbitrary SQL commands via a username...

7.5CVSS6.2AI score0.01717EPSS
Exploits0References2
Cvelist
Cvelist
added 2010/04/07 3:0 p.m.23 views

CVE-2010-0400

SQL injection vulnerability in lib/user.php in mahara 1.0.4 allows remote attackers to execute arbitrary SQL commands via a username...

8AI score0.01717EPSS
Exploits0References3
CVE
CVE
added 2010/04/07 3:0 p.m.62 views

CVE-2010-0400

CVE-2010-0400 affects mahara 1.0.4, with a SQL injection in lib/user.php exploitable via the username. Multiple openvas/Red Hat/Debian entries confirm the issue and tie it to improper handling/escaping when generating a unique username from a remote user (SSO). Impact: remote attacker could alter...

7.5CVSS8.2AI score0.01717EPSS
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2010/04/07 12:0 a.m.108 views

[SECURITY] [DSA 2030-1] New mahara packages fix sql injection

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA-2030-1 [email protected] http://www.debian.org/security/ Nico Golde April 6th, 2010 http://www.debian.org/security/faq -...

7.5CVSS6.1AI score0.01717EPSS
Exploits0
Debian
Debian
added 2010/04/06 6:43 p.m.27 views

[SECURITY] [DSA 2030-1] New mahara packages fix sql injection

-------------------------------------------------------------------------- Debian Security Advisory DSA-2030-1 [email protected] http://www.debian.org/security/ Nico Golde April 6th, 2010 http://www.debian.org/security/faq -...

7.5CVSS6.2AI score0.01717EPSS
Exploits0
Rows per page
Query Builder