CVE-2013-4432
Affected software: Mahara. Vulnerable versions: Mahara before 1.5.13, 1.6.x before 1.6.8, and 1.7.x before 1.7.4. Issue: improper access restrictions on folders allows remote authenticated users to read arbitrary folders via (1) an active folder tab loaded before permissions were removed or (2) t...