8 matches found
Debian Security Advisory DSA 2030-1 (mahara)
The remote host is missing an update to mahara announced via advisory DSA 2030-1. OpenVAS Vulnerability Test $Id: deb20301.nasl 6614 2017-07-07 12:09:12Z cfischer $ Description: Auto-generated from advisory DSA 2030-1 mahara Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...
FreeBSD Ports: mahara
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2010 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Debian DSA-2030-1 : mahara - sql injection
It was discovered that mahara, an electronic portfolio, weblog, and resume builder is not properly escaping input when generating a unique username based on a remote user name from a single sign-on application. An attacker can use this to compromise the mahara database via crafted user names...
CVE-2010-0400
SQL injection vulnerability in lib/user.php in mahara 1.0.4 allows remote attackers to execute arbitrary SQL commands via a username...
CVE-2010-0400
SQL injection vulnerability in lib/user.php in mahara 1.0.4 allows remote attackers to execute arbitrary SQL commands via a username...
CVE-2010-0400
CVE-2010-0400 affects mahara 1.0.4, with a SQL injection in lib/user.php exploitable via the username. Multiple openvas/Red Hat/Debian entries confirm the issue and tie it to improper handling/escaping when generating a unique username from a remote user (SSO). Impact: remote attacker could alter...
[SECURITY] [DSA 2030-1] New mahara packages fix sql injection
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA-2030-1 [email protected] http://www.debian.org/security/ Nico Golde April 6th, 2010 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2030-1] New mahara packages fix sql injection
-------------------------------------------------------------------------- Debian Security Advisory DSA-2030-1 [email protected] http://www.debian.org/security/ Nico Golde April 6th, 2010 http://www.debian.org/security/faq -...