Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:51 p.m.9 views

CVE-2025-59308

In Mahara before 24.04.10 and 25 before 25.04.1, an institution administrator or institution support administrator on a multi-tenanted site can masquerade as an institution member in an institution for which they are not an administrator, if they also have the 'Site staff' role...

4.7CVSS5.4AI score0.00177EPSS
Exploits0References1
NVD
NVD
added 2026/04/24 4:16 p.m.7 views

CVE-2025-59308

In Mahara before 24.04.10 and 25 before 25.04.1, an institution administrator or institution support administrator on a multi-tenanted site can masquerade as an institution member in an institution for which they are not an administrator, if they also have the 'Site staff' role...

4.7CVSS0.00177EPSS
Exploits0References2
CVE
CVE
added 2026/04/24 12:0 a.m.14 views

CVE-2025-59308

In Mahara, versions before 24.04.10 and 25 before 25.04.1 allow an institution administrator or institution support administrator on a multi-tenant site to masquerade as an institution member in another institution if they also hold the 'Site staff' role. This is the core vulnerability described ...

4.7CVSS5.2AI score0.00177EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/24 12:0 a.m.10 views

Mahara 访问控制错误漏洞

Mahara is a free and open-source web-based electronic portfolio management system. Versions of Mahara before 24.04.10 and 25.04.1 contained an access control vulnerability. This vulnerability could allow institutional administrators or support administrators on multi-technology sites to impersona...

4.7CVSS5.8AI score0.00177EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/24 12:0 a.m.9 views

EUVD-2025-209574

In Mahara before 24.04.10 and 25 before 25.04.1, an institution administrator or institution support administrator on a multi-tenanted site can masquerade as an institution member in an institution for which they are not an administrator, if they also have the 'Site staff' role...

4.7CVSS5.3AI score0.00177EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/24 12:0 a.m.7 views

CVE-2025-59308

In Mahara before 24.04.10 and 25 before 25.04.1, an institution administrator or institution support administrator on a multi-tenanted site can masquerade as an institution member in an institution for which they are not an administrator, if they also have the 'Site staff' role...

5.2AI score0.00177EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/24 12:0 a.m.30 views

CVE-2025-59308

In Mahara before 24.04.10 and 25 before 25.04.1, an institution administrator or institution support administrator on a multi-tenanted site can masquerade as an institution member in an institution for which they are not an administrator, if they also have the 'Site staff' role...

0.00177EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/24 12:0 a.m.3 views

CVE-2025-59308

In Mahara before 24.04.10 and 25 before 25.04.1, an institution administrator or institution support administrator on a multi-tenanted site can masquerade as an institution member in an institution for which they are not an administrator, if they also have the 'Site staff' role...

5.2AI score0.00177EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.26 views

PT-2026-34880

In Mahara before 24.04.10 and 25 before 25.04.1, an institution administrator or institution support administrator on a multi-tenanted site can masquerade as an institution member in an institution for which they are not an administrator, if they also have the 'Site staff' role...

4.7CVSS5.2AI score0.00177EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-28136

Malicious code in bioql PyPI...

5.3CVSS6.5AI score0.00373EPSS
Exploits0References3
NVD
NVD
added 2025/05/21 10:15 p.m.16 views

CVE-2025-47942

The Open edX Platform is a learning management platform. Prior to commit 6740e75c0fdc7ba095baf88e9f5e4f3e15cfd8ba, edxapp has no built-in protection against downloading the pythonlib.zip asset from courses, which is a concern since it often contains custom grading code or answers to course...

5.3CVSS0.00373EPSS
Exploits0References3
Rows per page
Query Builder