12 matches found
EUVD-2020-30208
Malware in sbrugna...
EUVD-2022-33917
Malicious code in bioql PyPI...
CVE-2022-29585
In Mahara before 20.10.5, 21.04.4, 21.10.2, and 22.04.0, a site using Isolated Institutions is vulnerable if more than ten groups are used. They are all shown from page 2 of the group results list rather than only being shown for the institution that the viewer is a member of...
CVE-2022-29585
In Mahara before 20.10.5, 21.04.4, 21.10.2, and 22.04.0, a site using Isolated Institutions is vulnerable if more than ten groups are used. They are all shown from page 2 of the group results list rather than only being shown for the institution that the viewer is a member of...
CVE-2022-29585
In Mahara before 20.10.5, 21.04.4, 21.10.2, and 22.04.0, a site using Isolated Institutions is vulnerable if more than ten groups are used. They are all shown from page 2 of the group results list rather than only being shown for the institution that the viewer is a member of...
CVE-2022-29585
In Mahara before 20.10.5, 21.04.4, 21.10.2, and 22.04.0, a site using Isolated Institutions is vulnerable if more than ten groups are used. They are all shown from page 2 of the group results list rather than only being shown for the institution that the viewer is a member of...
Design/Logic Flaw
In Mahara before 20.10.5, 21.04.4, 21.10.2, and 22.04.0, a site using Isolated Institutions is vulnerable if more than ten groups are used. They are all shown from page 2 of the group results list rather than only being shown for the institution that the viewer is a member of...
CVE-2022-29585
CVE-2022-29585 affects Mahara versions prior to 20.10.5, 21.04.4, 21.10.2, and 22.04.0. The issue arises in sites using Isolated Institutions where, when more than ten groups are used, all groups are listed on page 2 of the group results instead of only those belonging to the viewer’s institution...
CVE-2022-29585
In Mahara before 20.10.5, 21.04.4, 21.10.2, and 22.04.0, a site using Isolated Institutions is vulnerable if more than ten groups are used. They are all shown from page 2 of the group results list rather than only being shown for the institution that the viewer is a member of...
Design/Logic Flaw
In Mahara 19.04 before 19.04.5 and 19.10 before 19.10.3, account details are shared in the Elasticsearch results for accounts that are not accessible when the config setting 'Isolated institutions' is turned on...
CVE-2020-9387
In Mahara 19.04 before 19.04.5 and 19.10 before 19.10.3, account details are shared in the Elasticsearch results for accounts that are not accessible when the config setting 'Isolated institutions' is turned on...
CVE-2020-9387
CVE-2020-9387 affects Mahara 19.04 before 19.04.5 and 19.10 before 19.10.3. The issue exposes account details in Elasticsearch results for accounts that should be inaccessible when the Isolated institutions setting is enabled, resulting in information disclosure. The vulnerability’s concrete reme...