CVE-2017-1000140
Mahara is affected in versions 1.8 before 1.8.7, 1.9 before 1.9.5, 1.10 before 1.10.3, and 15.04 before 15.04.0 by a maliciously created .xml file that can execute code when a user downloads the file. The connected sources corroborate this vulnerability, but do not provide remediation details wit...