Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-1434

Malware in sbrugna...

5.4CVSS5.5AI score0.00495EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2012-2231

Malware in sbrugna...

6.1CVSS6.1AI score0.02867EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-0663

Malware in sbrugna...

4.3CVSS6.1AI score0.0211EPSS
Exploits1References10
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-54913

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00188EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/08/27 12:0 a.m.3 views

Mahara 24.04 < 24.04.1, 23.04 < 23.04.6 Information Disclosure Vulnerability

Mahara is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mahara:mahara"; if...

9.1CVSS6.5AI score0.00302EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/26 12:0 a.m.8 views

CVE-2024-47853

An issue was discovered in Mahara 23.04.8 and 24.04.4. Attackers may utilize escalation of privileges in certain cases when logging into Mahara with Learning Tools Interoperability LTI...

0.00292EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 10:29 p.m.8 views

CVE-2022-24111

In Mahara 21.04 before 21.04.3 and 21.10 before 21.10.1, portfolios created in groups that have not been shared with non-group members and portfolios created on the site and institution levels can be viewed without requiring a login if the URL to these portfolios is known...

5.3CVSS6.7AI score0.00824EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 9:54 p.m.7 views

CVE-2009-2171

Mahara 1.1 before 1.1.5 does not apply permission checks when saving a view that contains artefacts, which allows remote authenticated users to read another user's artefact...

4CVSS6.4AI score0.00918EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/06/22 12:0 a.m.4 views

PT-2022-6323 · Canonical · Ubuntu

Name of the Vulnerable Software and Affected Versions: Mahara versions 21.04 through 21.04.6 Mahara versions 21.10 through 21.10.4 Mahara versions 22.04 through 22.04.2 Mahara version 22.10.0 Description: The vulnerability exists due to the lack of protection of the web page structure in the PDF...

10CVSS9.3AI score0.00762EPSS
Exploits0References8
NVD
NVD
added 2017/11/03 6:29 p.m.11 views

CVE-2017-1000138

Mahara 1.10 before 1.10.0 and 15.04 before 15.04.0 are vulnerable to possible cross site scripting when dragging/dropping files into a collection if the file has Javascript code in its title...

5.4CVSS5.4AI score0.00495EPSS
Exploits1References1
NVD
NVD
added 2017/11/03 6:29 p.m.14 views

CVE-2017-1000139

Mahara 1.8 before 1.8.7 and 1.9 before 1.9.5 and 1.10 before 1.10.3 and 15.04 before 15.04.0 are vulnerable to server-side request forgery attacks as not all processes of curl redirects are checked against a white or black list. Employing SafeCurl will prevent issues...

8CVSS7.9AI score0.00721EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/09/25 4:0 p.m.16 views

CVE-2017-9551

Mahara 15.04 before 15.04.14 and 16.04 before 16.04.8 and 16.10 before 16.10.5 and 17.04 before 17.04.3 are vulnerable to a user submitting potential dangerous payload, e.g. XSS code, to be saved as their name in the usrregistration table. The values are then emailed to the the user and...

6AI score0.00649EPSS
Exploits0References2
Cvelist
Cvelist
added 2011/05/13 10:0 p.m.24 views

CVE-2011-1402

Mahara before 1.3.6 allows remote authenticated users to bypass intended access restrictions, and suspend a user account, edit a view, visit a view, edit a plan artefact, read a plans block, read a plan artefact, edit a blog, read a blog block, read a blog artefact, or access a block, via a reque...

6AI score0.02529EPSS
Exploits0References14
ATTACKERKB
ATTACKERKB
added 2009/06/23 4:30 p.m.3 views

CVE-2009-2171

Mahara 1.1 before 1.1.5 does not apply permission checks when saving a view that contains artefacts, which allows remote authenticated users to read another user's artefact...

4CVSS5.6AI score0.00918EPSS
Exploits0References2
Rows per page
Query Builder