2 matches found
CVE-2017-1000137
Mahara 1.10 before 1.10.0 and 15.04 before 15.04.0 are vulnerable to possible cross site scripting when adding a text block to a page via the keyboard rather than drag and drop...
CVE-2017-1000137
Mahara is affected: versions 1.10 before 1.10.0 and 15.04 before 15.04.0 are vulnerable to cross-site scripting when a text block is added to a page via the keyboard (not drag-and-drop). Root cause reported as an XSS issue in these build paths. Exploit details, mitigations, and fixes are not prov...