MidnightBSD

Advisories for mahara

CVE-2010-0400 HIGH

SQL injection vulnerability in lib/user.php in mahara 1.0.4 allows remote attackers to execute arbitrary SQL commands via a username.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-89,

Products Affected

Vendor Product Version
mahara mahara 1.0.4
CVE-2010-1667 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in Mahara before 1.0.15, 1.1.x before 1.1.9, and 1.2.x before 1.2.5 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara 1.1.1
mahara mahara 1.0.11
mahara mahara 1.0.3
mahara mahara 1.1.4
mahara mahara 1.0.10
mahara mahara 1.0.5
mahara mahara 1.0.12
mahara mahara 0.9.0
mahara mahara 1.0.0
mahara mahara 1.0.2
mahara mahara 1.2.3
mahara mahara 1.1.2
mahara mahara 1.1.3
mahara mahara 1.1.6
mahara mahara 1.2.2
mahara mahara *
mahara mahara 1.2.1
mahara mahara 1.0.8
mahara mahara 0.9.1
mahara mahara 1.2.4
mahara mahara 1.0.4
mahara mahara 1.0.7
mahara mahara 1.0.13
mahara mahara 1.0.1
mahara mahara 1.0.6
mahara mahara 1.1.7
mahara mahara 0.9.2
mahara mahara 1.1.8
mahara mahara 1.2.0
mahara mahara 1.1.5
mahara mahara 1.1.0
CVE-2010-1668 MEDIUM

Multiple cross-site request forgery (CSRF) vulnerabilities in Mahara before 1.0.15, 1.1.x before 1.1.9, and 1.2.x before 1.2.5 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mahara mahara 1.1.1
mahara mahara 1.0.11
mahara mahara 1.0.3
mahara mahara 1.1.4
mahara mahara 1.0.10
mahara mahara 1.0.5
mahara mahara 1.0.12
mahara mahara 0.9.0
mahara mahara 1.0.0
mahara mahara 1.0.2
mahara mahara 1.2.3
mahara mahara 1.1.2
mahara mahara 1.1.3
mahara mahara 1.1.6
mahara mahara 1.2.2
mahara mahara *
mahara mahara 1.2.1
mahara mahara 1.0.8
mahara mahara 0.9.1
mahara mahara 1.2.4
mahara mahara 1.0.4
mahara mahara 1.0.7
mahara mahara 1.0.13
mahara mahara 1.0.1
mahara mahara 1.0.9
mahara mahara 1.0.6
mahara mahara 1.1.7
mahara mahara 0.9.2
mahara mahara 1.1.8
mahara mahara 1.2.0
mahara mahara 1.1.5
mahara mahara 1.1.0
CVE-2010-1669 HIGH

SQL injection vulnerability in Mahara 1.1.x before 1.1.9 and 1.2.x before 1.2.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-89,

Products Affected

Vendor Product Version
mahara mahara 1.1.1
mahara mahara 1.2.4
mahara mahara 1.1.4
mahara mahara 1.1.7
mahara mahara 1.2.3
mahara mahara 1.1.2
mahara mahara 1.1.3
mahara mahara 1.1.6
mahara mahara 1.2.2
mahara mahara 1.1.8
mahara mahara 1.2.0
mahara mahara 1.1.5
mahara mahara 1.2.1
mahara mahara 1.1.0
CVE-2010-1670 HIGH

Mahara before 1.0.15, 1.1.x before 1.1.9, and 1.2.x before 1.2.5 has improper configuration options for authentication plugins associated with logins that use the single sign-on (SSO) functionality, which allows remote attackers to bypass authentication via an empty password. NOTE: some of these details are obtained from third party information.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
mahara mahara 1.1.1
mahara mahara 1.0.11
mahara mahara 1.0.3
mahara mahara 1.1.4
mahara mahara 1.0.10
mahara mahara 1.0.5
mahara mahara 1.0.12
mahara mahara 0.9.0
mahara mahara 1.0.0
mahara mahara 1.0.2
mahara mahara 1.2.3
mahara mahara 1.1.2
mahara mahara 1.1.3
mahara mahara 1.1.6
mahara mahara 1.2.2
mahara mahara *
mahara mahara 1.2.1
mahara mahara 1.0.8
mahara mahara 0.9.1
mahara mahara 1.2.4
mahara mahara 1.0.4
mahara mahara 1.0.7
mahara mahara 1.0.13
mahara mahara 1.0.1
mahara mahara 1.0.6
mahara mahara 1.1.7
mahara mahara 0.9.2
mahara mahara 1.1.8
mahara mahara 1.2.0
mahara mahara 1.1.5
mahara mahara 1.1.0
CVE-2010-2479 MEDIUM

Cross-site scripting (XSS) vulnerability in HTML Purifier before 4.1.1, as used in Mahara and other products, when the browser is Internet Explorer, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara 1.1.1
htmlpurifier htmlpurifier 1.0.1
mahara mahara 1.0.11
mahara mahara 1.0.3
htmlpurifier htmlpurifier 2.0.1
mahara mahara 1.0.12
mahara mahara 1.0.0
htmlpurifier htmlpurifier 1.4.1
htmlpurifier htmlpurifier 4.0.0
htmlpurifier htmlpurifier 2.1.4
mahara mahara 1.0.2
mahara mahara 1.2.3
mahara mahara 1.1.3
mahara mahara 1.2.2
htmlpurifier htmlpurifier 1.1.1
htmlpurifier htmlpurifier 3.1.0
htmlpurifier htmlpurifier 1.4.0
htmlpurifier htmlpurifier 2.1.2
mahara mahara 0.9.1
mahara mahara 1.2.4
htmlpurifier htmlpurifier 2.0.0
htmlpurifier htmlpurifier 1.1.0
htmlpurifier htmlpurifier 3.1.1
mahara mahara 1.0.7
mahara mahara 1.0.1
mahara mahara 1.0.9
htmlpurifier htmlpurifier 1.6.0
mahara mahara 1.0.6
mahara mahara 1.1.7
mahara mahara 0.9.2
mahara mahara 1.1.8
htmlpurifier htmlpurifier 2.1.1
mahara mahara 1.1.0
htmlpurifier htmlpurifier 2.1.0
htmlpurifier htmlpurifier 2.1.3
htmlpurifier htmlpurifier 3.2.0
mahara mahara 1.1.4
mahara mahara 1.0.10
mahara mahara 1.0.5
htmlpurifier htmlpurifier 2.1.5
mahara mahara 0.9.0
htmlpurifier htmlpurifier 1.3.2
mahara mahara 1.1.2
mahara mahara 1.1.6
htmlpurifier htmlpurifier 1.2.0
mahara mahara *
htmlpurifier htmlpurifier 3.3.0
htmlpurifier htmlpurifier 1.1.2
htmlpurifier htmlpurifier 1.3.0
mahara mahara 1.2.1
htmlpurifier htmlpurifier 1.0.0
htmlpurifier htmlpurifier 1.3.1
mahara mahara 1.0.8
htmlpurifier htmlpurifier 1.5.0
mahara mahara 1.0.4
mahara mahara 1.0.13
htmlpurifier htmlpurifier 1.6.1
mahara mahara 1.2.0
htmlpurifier htmlpurifier *
mahara mahara 1.1.5
htmlpurifier htmlpurifier 3.0.0
CVE-2010-3871 MEDIUM

Cross-site scripting (XSS) vulnerability in blocktype/groupviews/theme/raw/groupviews.tpl in Mahara before 1.3.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: some of these details are obtained from third party information.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara 1.1.1
mahara mahara 1.2.6
mahara mahara 1.3.0
mahara mahara 1.0.11
mahara mahara 1.0.15
mahara mahara 1.0.3
mahara mahara 1.1.4
mahara mahara 1.0.10
mahara mahara 1.0.14
mahara mahara 1.0.5
mahara mahara 1.0.12
mahara mahara 0.9.0
mahara mahara 1.0.0
mahara mahara 1.0.2
mahara mahara 1.2.3
mahara mahara 1.1.2
mahara mahara 1.1.3
mahara mahara 1.1.6
mahara mahara 1.2.2
mahara mahara *
mahara mahara 1.2.5
mahara mahara 1.2.1
mahara mahara 1.0.8
mahara mahara 0.9.1
mahara mahara 1.2.4
mahara mahara 1.1
mahara mahara 1.1.9
mahara mahara 1.0.4
mahara mahara 1.0.7
mahara mahara 1.0.13
mahara mahara 1.0.1
mahara mahara 1.0.9
mahara mahara 1.0.6
mahara mahara 1.1.7
mahara mahara 0.9.2
mahara mahara 1.1.8
mahara mahara 1.2.0
mahara mahara 1.1.5
mahara mahara 1.1.0
mahara mahara 1.3.1
CVE-2011-0439 MEDIUM

Cross-site scripting (XSS) vulnerability in Mahara 1.2.x before 1.2.7 and 1.3.x before 1.3.4 allows remote attackers to inject arbitrary web script or HTML via the Pieforms select box.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara 1.2.6
mahara mahara 1.3.0
mahara mahara 1.2.3
mahara mahara 1.2.4
mahara mahara 1.2.2
mahara mahara 1.2.5
mahara mahara 1.2.0
mahara mahara 1.3.2
mahara mahara 1.2.1
mahara mahara 1.3.3
mahara mahara 1.3.1
CVE-2011-0440 MEDIUM

Cross-site request forgery (CSRF) vulnerability in Mahara 1.2.x before 1.2.7 and 1.3.x before 1.3.4 allows remote attackers to hijack the authentication of arbitrary users for requests that delete blogs.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mahara mahara 1.2.6
mahara mahara 1.3.0
mahara mahara 1.2.3
mahara mahara 1.2.4
mahara mahara 1.2.2
mahara mahara 1.2.5
mahara mahara 1.2.0
mahara mahara 1.3.2
mahara mahara 1.2.1
mahara mahara 1.3.3
mahara mahara 1.3.1
CVE-2011-1402 MEDIUM

Mahara before 1.3.6 allows remote authenticated users to bypass intended access restrictions, and suspend a user account, edit a view, visit a view, edit a plan artefact, read a plans block, read a plan artefact, edit a blog, read a blog block, read a blog artefact, or access a block, via a request associated with (1) admin/users/search.json.php, (2) view/newviewtoken.json.php, (3) lib/mahara.php, (4) artefact/plans/tasks.json.php, (5) artefact/plans/viewtasks.json.php, (6) artefact/blog/view/index.json.php, (7) artefact/blog/posts.json.php, or (8) blocktype/myfriends/myfriends.json.php, related to incorrect privilege enforcement, a missing user id check, and incorrect enforcement of the Overriding Start/Stop Dates setting.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mahara mahara 1.1.1
mahara mahara 1.2.6
mahara mahara 1.3.0
mahara mahara 1.3.4
mahara mahara 1.0.11
mahara mahara 1.0.15
mahara mahara 1.0.3
mahara mahara 1.1.4
mahara mahara 1.0.10
mahara mahara 1.0.14
mahara mahara 1.0.5
mahara mahara 1.0.12
mahara mahara 0.9.0
mahara mahara 1.0.0
mahara mahara 1.3.3
mahara mahara 1.0.2
mahara mahara 1.2.3
mahara mahara 1.1.2
mahara mahara 1.1.3
mahara mahara 1.1.6
mahara mahara 1.2.2
mahara mahara *
mahara mahara 1.2.5
mahara mahara 1.2.1
mahara mahara 1.0.8
mahara mahara 0.9.1
mahara mahara 1.2.4
mahara mahara 1.1
mahara mahara 1.1.9
mahara mahara 1.0.4
mahara mahara 1.0.7
mahara mahara 1.0.13
mahara mahara 1.0.1
mahara mahara 1.0.9
mahara mahara 1.0.6
mahara mahara 1.1.7
mahara mahara 0.9.2
mahara mahara 1.1.8
mahara mahara 1.2.0
mahara mahara 1.3.2
mahara mahara 1.1.5
mahara mahara 1.1.0
mahara mahara 1.3.1
CVE-2011-1403 MEDIUM

Cross-site request forgery (CSRF) vulnerability in the pieforms implementation in Mahara before 1.3.6 allows remote attackers to hijack the authentication of arbitrary users for requests to any form, related to inappropriate regeneration of session keys.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mahara mahara 1.1.1
mahara mahara 1.2.6
mahara mahara 1.3.0
mahara mahara 1.3.4
mahara mahara 1.0.11
mahara mahara 1.0.15
mahara mahara 1.0.3
mahara mahara 1.1.4
mahara mahara 1.0.10
mahara mahara 1.0.14
mahara mahara 1.0.5
mahara mahara 1.0.12
mahara mahara 0.9.0
mahara mahara 1.0.0
mahara mahara 1.3.3
mahara mahara 1.0.2
mahara mahara 1.2.3
mahara mahara 1.1.2
mahara mahara 1.1.3
mahara mahara 1.1.6
mahara mahara 1.2.2
mahara mahara *
mahara mahara 1.2.5
mahara mahara 1.2.1
mahara mahara 1.0.8
mahara mahara 0.9.1
mahara mahara 1.2.4
mahara mahara 1.1
mahara mahara 1.1.9
mahara mahara 1.0.4
mahara mahara 1.0.7
mahara mahara 1.0.13
mahara mahara 1.0.1
mahara mahara 1.0.9
mahara mahara 1.0.6
mahara mahara 1.1.7
mahara mahara 0.9.2
mahara mahara 1.1.8
mahara mahara 1.2.0
mahara mahara 1.3.2
mahara mahara 1.1.5
mahara mahara 1.1.0
mahara mahara 1.3.1
CVE-2011-1404 MEDIUM

Mahara before 1.3.6 does not properly restrict the data in responses to AJAX calls, which allows remote authenticated users to obtain sensitive information via a request associated with (1) blocktype/myfriends/myfriends.json.php, (2) json/usersearch.php, (3) group/membersearchresults.json.php, or (4) json/friendsearch.php, as demonstrated by information about friends and e-mail addresses.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mahara mahara 1.1.1
mahara mahara 1.2.6
mahara mahara 1.3.0
mahara mahara 1.3.4
mahara mahara 1.0.11
mahara mahara 1.0.15
mahara mahara 1.0.3
mahara mahara 1.1.4
mahara mahara 1.0.10
mahara mahara 1.0.14
mahara mahara 1.0.5
mahara mahara 1.0.12
mahara mahara 0.9.0
mahara mahara 1.0.0
mahara mahara 1.3.3
mahara mahara 1.0.2
mahara mahara 1.2.3
mahara mahara 1.1.2
mahara mahara 1.1.3
mahara mahara 1.1.6
mahara mahara 1.2.2
mahara mahara *
mahara mahara 1.2.5
mahara mahara 1.2.1
mahara mahara 1.0.8
mahara mahara 0.9.1
mahara mahara 1.2.4
mahara mahara 1.1
mahara mahara 1.1.9
mahara mahara 1.0.4
mahara mahara 1.0.7
mahara mahara 1.0.13
mahara mahara 1.0.1
mahara mahara 1.0.9
mahara mahara 1.0.6
mahara mahara 1.1.7
mahara mahara 0.9.2
mahara mahara 1.1.8
mahara mahara 1.2.0
mahara mahara 1.3.2
mahara mahara 1.1.5
mahara mahara 1.1.0
mahara mahara 1.3.1
CVE-2011-1405 LOW

Cross-site scripting (XSS) vulnerability in Mahara before 1.3.6 allows remote authenticated users to inject arbitrary web script or HTML via vectors associated with HTML e-mail messages, related to artefact/comment/lib.php and interaction/forum/lib.php.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara 1.1.1
mahara mahara 1.2.6
mahara mahara 1.3.0
mahara mahara 1.3.4
mahara mahara 1.0.11
mahara mahara 1.0.15
mahara mahara 1.0.3
mahara mahara 1.1.4
mahara mahara 1.0.10
mahara mahara 1.0.14
mahara mahara 1.0.5
mahara mahara 1.0.12
mahara mahara 0.9.0
mahara mahara 1.0.0
mahara mahara 1.3.3
mahara mahara 1.0.2
mahara mahara 1.2.3
mahara mahara 1.1.2
mahara mahara 1.1.3
mahara mahara 1.1.6
mahara mahara 1.2.2
mahara mahara *
mahara mahara 1.2.5
mahara mahara 1.2.1
mahara mahara 1.0.8
mahara mahara 0.9.1
mahara mahara 1.2.4
mahara mahara 1.1
mahara mahara 1.1.9
mahara mahara 1.0.4
mahara mahara 1.0.7
mahara mahara 1.0.13
mahara mahara 1.0.1
mahara mahara 1.0.9
mahara mahara 1.0.6
mahara mahara 1.1.7
mahara mahara 0.9.2
mahara mahara 1.1.8
mahara mahara 1.2.0
mahara mahara 1.3.2
mahara mahara 1.1.5
mahara mahara 1.1.0
mahara mahara 1.3.1
CVE-2011-1406 MEDIUM

Mahara before 1.3.6 does not properly handle an https URL in the wwwroot configuration setting, which makes it easier for user-assisted remote attackers to obtain credentials by sniffing the network at a time when an http URL is used for a login.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-16,

Products Affected

Vendor Product Version
mahara mahara 1.1.1
mahara mahara 1.2.6
mahara mahara 1.3.0
mahara mahara 1.3.4
mahara mahara 1.0.11
mahara mahara 1.0.15
mahara mahara 1.0.3
mahara mahara 1.1.4
mahara mahara 1.0.10
mahara mahara 1.0.14
mahara mahara 1.0.5
mahara mahara 1.0.12
mahara mahara 0.9.0
mahara mahara 1.0.0
mahara mahara 1.3.3
mahara mahara 1.0.2
mahara mahara 1.2.3
mahara mahara 1.1.2
mahara mahara 1.1.3
mahara mahara 1.1.6
mahara mahara 1.2.2
mahara mahara *
mahara mahara 1.2.5
mahara mahara 1.2.1
mahara mahara 1.0.8
mahara mahara 0.9.1
mahara mahara 1.2.4
mahara mahara 1.1
mahara mahara 1.1.9
mahara mahara 1.0.4
mahara mahara 1.0.7
mahara mahara 1.0.13
mahara mahara 1.0.1
mahara mahara 1.0.9
mahara mahara 1.0.6
mahara mahara 1.1.7
mahara mahara 0.9.2
mahara mahara 1.1.8
mahara mahara 1.2.0
mahara mahara 1.3.2
mahara mahara 1.1.5
mahara mahara 1.1.0
mahara mahara 1.3.1
CVE-2011-2771 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in Mahara before 1.4.1 allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) URI attributes and (2) the External Feed component, as demonstrated by the guid element in an RSS feed.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara 1.1.1
mahara mahara 1.3.5
mahara mahara 1.2.6
mahara mahara 1.3.0
mahara mahara 1.3.4
mahara mahara 1.3.6
mahara mahara 1.0.11
mahara mahara 1.0.15
mahara mahara 1.0.3
mahara mahara 1.1.4
mahara mahara 1.0.10
mahara mahara 1.0.14
mahara mahara 1.0.5
mahara mahara 1.0.12
mahara mahara 0.9.0
mahara mahara 1.0.0
mahara mahara 1.3.3
mahara mahara 1.4
mahara mahara 1.0.2
mahara mahara 1.2.3
mahara mahara 1.1.2
mahara mahara 1.1.3
mahara mahara 1.1.6
mahara mahara 1.2.2
mahara mahara *
mahara mahara 1.2.5
mahara mahara 1.2.1
mahara mahara 1.0.8
mahara mahara 0.9.1
mahara mahara 1.2.4
mahara mahara 1.1
mahara mahara 1.1.9
mahara mahara 1.0.4
mahara mahara 1.0.7
mahara mahara 1.0.13
mahara mahara 1.0.1
mahara mahara 1.0.9
mahara mahara 1.0.6
mahara mahara 1.1.7
mahara mahara 0.9.2
mahara mahara 1.1.8
mahara mahara 1.2.0
mahara mahara 1.3.2
mahara mahara 1.1.5
mahara mahara 1.1.0
mahara mahara 1.3.1
mahara mahara 1.3.7
CVE-2011-2772 MEDIUM

The get_dataroot_image_path function in lib/file.php in Mahara before 1.4.1 does not properly validate uploaded image files, which allows remote attackers to cause a denial of service (memory consumption) via a (1) large or (2) invalid image.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
mahara mahara 1.1.1
mahara mahara 1.3.5
mahara mahara 1.2.6
mahara mahara 1.3.0
mahara mahara 1.3.4
mahara mahara 1.3.6
mahara mahara 1.0.11
mahara mahara 1.0.15
mahara mahara 1.0.3
mahara mahara 1.1.4
mahara mahara 1.0.10
mahara mahara 1.0.14
mahara mahara 1.0.5
mahara mahara 1.0.12
mahara mahara 0.9.0
mahara mahara 1.0.0
mahara mahara 1.3.3
mahara mahara 1.4
mahara mahara 1.0.2
mahara mahara 1.2.3
mahara mahara 1.1.2
mahara mahara 1.1.3
mahara mahara 1.1.6
mahara mahara 1.2.2
mahara mahara *
mahara mahara 1.2.5
mahara mahara 1.2.1
mahara mahara 1.0.8
mahara mahara 0.9.1
mahara mahara 1.2.4
mahara mahara 1.1
mahara mahara 1.1.9
mahara mahara 1.0.4
mahara mahara 1.0.7
mahara mahara 1.0.13
mahara mahara 1.0.1
mahara mahara 1.0.9
mahara mahara 1.0.6
mahara mahara 1.1.7
mahara mahara 0.9.2
mahara mahara 1.1.8
mahara mahara 1.2.0
mahara mahara 1.3.2
mahara mahara 1.1.5
mahara mahara 1.1.0
mahara mahara 1.3.1
mahara mahara 1.3.7
CVE-2011-2773 MEDIUM

Cross-site request forgery (CSRF) vulnerability in Mahara before 1.4.1 allows remote attackers to hijack the authentication of administrators for requests that add a user to an institution.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mahara mahara 1.1.1
mahara mahara 1.3.5
mahara mahara 1.2.6
mahara mahara 1.3.0
mahara mahara 1.3.4
mahara mahara 1.3.6
mahara mahara 1.0.11
mahara mahara 1.0.15
mahara mahara 1.0.3
mahara mahara 1.1.4
mahara mahara 1.0.10
mahara mahara 1.0.14
mahara mahara 1.0.5
mahara mahara 1.0.12
mahara mahara 0.9.0
mahara mahara 1.0.0
mahara mahara 1.3.3
mahara mahara 1.4
mahara mahara 1.0.2
mahara mahara 1.2.3
mahara mahara 1.1.2
mahara mahara 1.1.3
mahara mahara 1.1.6
mahara mahara 1.2.2
mahara mahara *
mahara mahara 1.2.5
mahara mahara 1.2.1
mahara mahara 1.0.8
mahara mahara 0.9.1
mahara mahara 1.2.4
mahara mahara 1.1
mahara mahara 1.1.9
mahara mahara 1.0.4
mahara mahara 1.0.7
mahara mahara 1.0.13
mahara mahara 1.0.1
mahara mahara 1.0.9
mahara mahara 1.0.6
mahara mahara 1.1.7
mahara mahara 0.9.2
mahara mahara 1.1.8
mahara mahara 1.2.0
mahara mahara 1.3.2
mahara mahara 1.1.5
mahara mahara 1.1.0
mahara mahara 1.3.1
mahara mahara 1.3.7
CVE-2011-2774 MEDIUM

The "Reply to message" feature in Mahara 1.3.x and 1.4.x before 1.4.1 allows remote authenticated users to read the messages of a different user via a modified replyto parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mahara mahara 1.3.5
mahara mahara 1.4.0
mahara mahara 1.3.0
mahara mahara 1.3.4
mahara mahara 1.3.6
mahara mahara 1.4
mahara mahara 1.3.2
mahara mahara 1.3.3
mahara mahara 1.3.1
mahara mahara 1.3.7
CVE-2011-4118 MEDIUM

Mahara before 1.4.1, when MNet (aka the Moodle network feature) is used, allows remote authenticated users to gain privileges via a jump to an XMLRPC target.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mahara mahara 1.1.1
mahara mahara 1.3.5
mahara mahara 1.2.6
mahara mahara 1.3.0
mahara mahara 1.3.4
mahara mahara 1.3.6
mahara mahara 1.0.11
mahara mahara 1.0.15
mahara mahara 1.0.3
mahara mahara 1.1.4
mahara mahara 1.0.10
mahara mahara 1.0.14
mahara mahara 1.0.5
mahara mahara 1.0.12
mahara mahara 0.9.0
mahara mahara 1.0.0
mahara mahara 1.3.3
mahara mahara 1.4
mahara mahara 1.0.2
mahara mahara 1.2.3
mahara mahara 1.1.2
mahara mahara 1.1.3
mahara mahara 1.1.6
mahara mahara 1.2.2
mahara mahara *
mahara mahara 1.2.5
mahara mahara 1.2.1
mahara mahara 1.0.8
mahara mahara 0.9.1
mahara mahara 1.2.4
mahara mahara 1.1
mahara mahara 1.1.9
mahara mahara 1.0.4
mahara mahara 1.0.7
mahara mahara 1.0.13
mahara mahara 1.0.1
mahara mahara 1.0.9
mahara mahara 1.0.6
mahara mahara 1.1.7
mahara mahara 0.9.2
mahara mahara 1.1.8
mahara mahara 1.2.0
mahara mahara 1.3.2
mahara mahara 1.1.5
mahara mahara 1.1.0
mahara mahara 1.3.1
mahara mahara 1.3.7
CVE-2012-2239 MEDIUM

Mahara 1.4.x before 1.4.4 and 1.5.x before 1.5.3 allows remote attackers to read arbitrary files or create TCP connections via an XML external entity (XXE) injection attack, as demonstrated by reading config.php.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-611,

Products Affected

Vendor Product Version
mahara mahara *
debian debian_linux 6.0
CVE-2012-2351 MEDIUM

The default configuration of the auth/saml plugin in Mahara before 1.4.2 sets the "Match username attribute to Remote username" option to false, which allows remote SAML IdP servers to spoof users of other SAML IdP servers by using the same internal username.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-16,CWE-284,CWE-287,

Products Affected

Vendor Product Version
mahara mahara 1.1.1
mahara mahara 1.3.5
mahara mahara 1.3.0
mahara mahara 1.3.6
mahara mahara 1.0.11
mahara mahara 1.0.15
mahara mahara 1.0.3
mahara mahara 1.0.12
debian debian_linux 6.0
mahara mahara 1.0.0
mahara mahara 1.0.2
mahara mahara 1.2.3
mahara mahara 1.1.3
mahara mahara 1.2.2
mahara mahara 0.9.1
mahara mahara 1.2.4
mahara mahara 1.1.9
mahara mahara 1.0.7
mahara mahara 1.0.1
mahara mahara 1.0.9
mahara mahara 1.0.6
mahara mahara 1.1.7
mahara mahara 0.9.2
mahara mahara 1.1.8
mahara mahara 1.3.2
mahara mahara 1.1.0
mahara mahara 1.3.7
mahara mahara 1.2.6
mahara mahara 1.3.4
mahara mahara 1.1.4
mahara mahara 1.0.10
mahara mahara 1.0.14
mahara mahara 1.0.5
mahara mahara 0.9.0
mahara mahara 1.3.3
mahara mahara 1.4
mahara mahara 1.1.2
mahara mahara 1.1.6
mahara mahara *
mahara mahara 1.2.5
mahara mahara 1.2.1
mahara mahara 1.0.8
mahara mahara 1.1
mahara mahara 1.0.4
mahara mahara 1.0.13
mahara mahara 1.4.0
mahara mahara 1.3.8
mahara mahara 1.2.0
mahara mahara 1.1.5
mahara mahara 1.3.1
CVE-2012-6037 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in Mahara 1.4.x before 1.4.5 and 1.5.x before 1.5.4, and other versions including 1.2, allow remote attackers to inject arbitrary web script or HTML via a CSV header with "unknown fields," which are not properly handled in error messages in the (1) bulk user, (2) group, and (3) group member upload capabilities. NOTE: this issue was originally part of CVE-2012-2243, but that ID was SPLIT due to different issues by different researchers.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara 1.4.0
mahara mahara 1.4.3
mahara mahara 1.4
mahara mahara 1.5.3
mahara mahara 1.5
mahara mahara 1.5.0
mahara mahara 1.5.2
mahara mahara 1.4.4
mahara mahara 1.5.1
mahara mahara 1.4.1
mahara mahara 1.4.2
CVE-2013-1426 MEDIUM

Cross-site Scripting (XSS) in Mahara before 1.5.9 and 1.6.x before 1.6.4 allows remote attackers to inject arbitrary web script or HTML via the TinyMCE editor.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara *
CVE-2013-4429 MEDIUM

Mahara before 1.5.12, 1.6.x before 1.6.7, and 1.7.x before 1.7.3 does not properly restrict access to artefacts, which allows remote authenticated users to read arbitrary artefacts via the (1) artefact id in an upload action when creating a journal or (2) instconf_artefactid_selected[ID] parameter in an upload action when editing a block.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mahara mahara 1.5.6
mahara mahara 1.6.1
mahara mahara 1.6.2
mahara mahara 1.5.4
mahara mahara 1.5.3
mahara mahara 1.5
mahara mahara 1.6.0
mahara mahara 1.6.4
mahara mahara 1.5.1
mahara mahara 1.5.8
mahara mahara 1.6.3
mahara mahara 1.5.10
mahara mahara 1.7.1
mahara mahara 1.5.9
mahara mahara 1.7.
mahara mahara 1.6.5
mahara mahara 1.5.0
mahara mahara 1.5.2
mahara mahara *
mahara mahara 1.7.2
mahara mahara 1.7.0
mahara mahara 1.6.6
mahara mahara 1.5.7
CVE-2013-4430 MEDIUM

Cross-site scripting (XSS) vulnerability in Mahara before 1.5.12, 1.6.x before 1.6.7, and 1.7.x before 1.7.3 allows remote attackers to inject arbitrary web script or HTML via the Host header to lib/web.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara 1.5.6
mahara mahara 1.6.1
mahara mahara 1.6.2
mahara mahara 1.5.4
mahara mahara 1.5.3
mahara mahara 1.5
mahara mahara 1.6.0
mahara mahara 1.6.4
mahara mahara 1.5.1
mahara mahara 1.5.8
mahara mahara 1.6.3
mahara mahara 1.5.10
mahara mahara 1.7.1
mahara mahara 1.5.9
mahara mahara 1.7.
mahara mahara 1.6.5
mahara mahara 1.5.0
mahara mahara 1.5.2
mahara mahara *
mahara mahara 1.7.2
mahara mahara 1.7.0
mahara mahara 1.6.6
mahara mahara 1.5.7
CVE-2013-4431 MEDIUM

Mahara before 1.5.12, 1.6.x before 1.6.7, and 1.7.x before 1.7.3 does not properly prevent access to blocks, which allows remote authenticated users to modify arbitrary blocks via the bock id in an edit request.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mahara mahara 1.5.6
mahara mahara 1.6.1
mahara mahara 1.6.2
mahara mahara 1.5.4
mahara mahara 1.5.3
mahara mahara 1.5
mahara mahara 1.6.0
mahara mahara 1.6.4
mahara mahara 1.5.1
mahara mahara 1.5.8
mahara mahara 1.6.3
mahara mahara 1.5.10
mahara mahara 1.7.1
mahara mahara 1.5.9
mahara mahara 1.7.
mahara mahara 1.6.5
mahara mahara 1.5.0
mahara mahara 1.5.2
mahara mahara *
mahara mahara 1.7.2
mahara mahara 1.7.0
mahara mahara 1.6.6
mahara mahara 1.5.7
CVE-2013-4432 MEDIUM

Mahara before 1.5.13, 1.6.x before 1.6.8, and 1.7.x before 1.7.4 does not properly restrict access to folders, which allows remote authenticated users to read arbitrary folders (1) by leveraging an active folder tab loaded before permissions were removed or (2) via the folder parameter to artefact/file/groupfiles.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mahara mahara 1.5.4
mahara mahara 1.5.3
mahara mahara 1.6.0
mahara mahara 1.6.4
mahara mahara 1.5.1
mahara mahara 1.6.7
mahara mahara 1.7.
mahara mahara 1.6.5
mahara mahara 1.5.2
mahara mahara *
mahara mahara 1.7.2
mahara mahara 1.7.0
mahara mahara 1.5.11
mahara mahara 1.6.6
mahara mahara 1.5.7
mahara mahara 1.5.6
mahara mahara 1.6.1
mahara mahara 1.6.2
mahara mahara 1.7.3
mahara mahara 1.5
mahara mahara 1.5.8
mahara mahara 1.6.3
mahara mahara 1.5.10
mahara mahara 1.7.1
mahara mahara 1.5.9
mahara mahara 1.5.0
CVE-2017-1000131 MEDIUM

Mahara 15.04 before 15.04.8 and 15.10 before 15.10.4 and 16.04 before 16.04.2 are vulnerable to users staying logged in to their Mahara account even when they have been logged out of Moodle (when using MNet) as Mahara did not properly implement one of the MNet SSO API functions.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-613,

Products Affected

Vendor Product Version
mahara mahara 15.04.4
mahara mahara 15.04.1
mahara mahara 16.04
mahara mahara 16.04.1
mahara mahara 15.10.2
mahara mahara 15.04.5
mahara mahara 15.10.1
mahara mahara 15.04.2
mahara mahara 15.04
mahara mahara 15.04.6
mahara mahara 15.04.3
mahara mahara 15.04.0
mahara mahara 16.04.0
mahara mahara 15.10.3
mahara mahara 15.10.0
mahara mahara 15.04.7
CVE-2017-1000132 LOW

Mahara 1.8 before 1.8.7 and 1.9 before 1.9.5 and 1.10 before 1.10.3 and 15.04 before 15.04.0 are vulnerable to a maliciously created .swf files that can have its code executed when a user tries to download the file.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara 1.10.1
mahara mahara 1.8.2
mahara mahara 1.9.0
mahara mahara 1.8.6
mahara mahara 1.10.2
mahara mahara 1.8.0
mahara mahara 1.9.1
mahara mahara 1.9.3
mahara mahara 1.8.4
mahara mahara 1.8.5
mahara mahara 1.8
mahara mahara 1.8.1
mahara mahara 1.9.4
mahara mahara 15.04
mahara mahara 1.9.2
mahara mahara 1.8.3
mahara mahara 1.9
mahara mahara 1.10.0
mahara mahara 1.10
CVE-2017-1000133 MEDIUM

Mahara 15.04 before 15.04.8 and 15.10 before 15.10.4 and 16.04 before 16.04.2 are vulnerable to a user - in some circumstances causing another user's artefacts to be included in a Leap2a export of their own pages.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mahara mahara 15.04.4
mahara mahara 15.04.1
mahara mahara 16.04
mahara mahara 16.04.1
mahara mahara 15.10.2
mahara mahara 15.04.5
mahara mahara 15.10.1
mahara mahara 15.04.2
mahara mahara 15.04
mahara mahara 15.04.6
mahara mahara 15.04.3
mahara mahara 15.04.0
mahara mahara 16.04.0
mahara mahara 15.10.3
mahara mahara 15.10.0
mahara mahara 15.04.7
CVE-2017-1000134 MEDIUM

Mahara 1.8 before 1.8.6 and 1.9 before 1.9.4 and 1.10 before 1.10.1 and 15.04 before 15.04.0 are vulnerable because group members can lose access to the group files they uploaded if another group member changes the access permissions on them.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-732,

Products Affected

Vendor Product Version
mahara mahara 1.8.2
mahara mahara 1.9.0
mahara mahara 1.8.0
mahara mahara 1.9.1
mahara mahara 1.9.3
mahara mahara 1.8.4
mahara mahara 1.8.5
mahara mahara 1.8
mahara mahara 1.8.1
mahara mahara 15.04
mahara mahara 1.9.2
mahara mahara 1.8.3
mahara mahara 1.9
mahara mahara 1.10.0
mahara mahara 1.10
CVE-2017-1000135 MEDIUM

Mahara 1.8 before 1.8.7 and 1.9 before 1.9.5 and 1.10 before 1.10.3 and 15.04 before 15.04.0 are vulnerable as logged-in users can stay logged in after the institution they belong to is suspended.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-613,

Products Affected

Vendor Product Version
mahara mahara 1.10.1
mahara mahara 1.8.2
mahara mahara 1.9.0
mahara mahara 1.8.6
mahara mahara 1.10.2
mahara mahara 1.8.0
mahara mahara 1.9.1
mahara mahara 1.9.3
mahara mahara 1.8.4
mahara mahara 1.8.5
mahara mahara 1.8
mahara mahara 1.8.1
mahara mahara 1.9.4
mahara mahara 15.04
mahara mahara 1.9.2
mahara mahara 1.8.3
mahara mahara 1.9
mahara mahara 1.10.0
mahara mahara 1.10
CVE-2017-1000136 MEDIUM

Mahara 1.8 before 1.8.6 and 1.9 before 1.9.4 and 1.10 before 1.10.1 and 15.04 before 15.04.0 are vulnerable to old sessions not being invalidated after a password change.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-613,

Products Affected

Vendor Product Version
mahara mahara 1.8.2
mahara mahara 1.9.0
mahara mahara 1.8.0
mahara mahara 1.9.1
mahara mahara 1.9.3
mahara mahara 1.8.4
mahara mahara 1.8.5
mahara mahara 1.8
mahara mahara 1.8.1
mahara mahara 15.04
mahara mahara 1.9.2
mahara mahara 1.8.3
mahara mahara 1.9
mahara mahara 1.10.0
mahara mahara 1.10
CVE-2017-1000137 LOW

Mahara 1.10 before 1.10.0 and 15.04 before 15.04.0 are vulnerable to possible cross site scripting when adding a text block to a page via the keyboard (rather than drag and drop).

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara 15.04
mahara mahara 1.10
CVE-2017-1000138 LOW

Mahara 1.10 before 1.10.0 and 15.04 before 15.04.0 are vulnerable to possible cross site scripting when dragging/dropping files into a collection if the file has Javascript code in its title.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara 15.04
mahara mahara 1.10
CVE-2017-1000139 MEDIUM

Mahara 1.8 before 1.8.7 and 1.9 before 1.9.5 and 1.10 before 1.10.3 and 15.04 before 15.04.0 are vulnerable to server-side request forgery attacks as not all processes of curl redirects are checked against a white or black list. Employing SafeCurl will prevent issues.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-918,

Products Affected

Vendor Product Version
mahara mahara 1.10.1
mahara mahara 1.8.2
mahara mahara 1.9.0
mahara mahara 1.8.6
mahara mahara 1.10.2
mahara mahara 1.8.0
mahara mahara 1.9.1
mahara mahara 1.9.3
mahara mahara 1.8.4
mahara mahara 1.8.5
mahara mahara 1.8
mahara mahara 1.8.1
mahara mahara 1.9.4
mahara mahara 15.04
mahara mahara 1.9.2
mahara mahara 1.8.3
mahara mahara 1.9
mahara mahara 1.10.0
mahara mahara 1.10
CVE-2017-1000140 LOW

Mahara 1.8 before 1.8.7 and 1.9 before 1.9.5 and 1.10 before 1.10.3 and 15.04 before 15.04.0 are vulnerable to a maliciously created .xml file that can have its code executed when user tries to download the file.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara 1.10.1
mahara mahara 1.8.2
mahara mahara 1.9.0
mahara mahara 1.8.6
mahara mahara 1.10.2
mahara mahara 1.8.0
mahara mahara 1.9.1
mahara mahara 1.9.3
mahara mahara 1.8.4
mahara mahara 1.8.5
mahara mahara 1.8
mahara mahara 1.8.1
mahara mahara 1.9.4
mahara mahara 15.04
mahara mahara 1.9.2
mahara mahara 1.8.3
mahara mahara 1.9
mahara mahara 1.10.0
mahara mahara 1.10
CVE-2017-1000141 MEDIUM

An issue was discovered in Mahara before 18.10.0. It mishandled user requests that could discontinue a user's ability to maintain their own account (changing username, changing primary email address, deleting account). The correct behavior was to either prompt them for their password and/or send a warning to their primary email address.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-640,

Products Affected

Vendor Product Version
mahara mahara *
CVE-2017-1000142 MEDIUM

Mahara 1.8 before 1.8.7 and 1.9 before 1.9.5 and 1.10 before 1.10.3 and 15.04 before 15.04.0 are vulnerable to users being able to delete their submitted page through URL manipulation.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mahara mahara 1.10.1
mahara mahara 1.8.2
mahara mahara 1.9.0
mahara mahara 1.8.6
mahara mahara 1.10.2
mahara mahara 1.8.0
mahara mahara 1.9.1
mahara mahara 1.9.3
mahara mahara 1.8.4
mahara mahara 1.8.5
mahara mahara 1.8
mahara mahara 1.8.1
mahara mahara 1.9.4
mahara mahara 15.04
mahara mahara 1.9.2
mahara mahara 1.8.3
mahara mahara 1.9
mahara mahara 1.10.0
mahara mahara 1.10
CVE-2017-1000143 MEDIUM

Mahara 1.8 before 1.8.7 and 1.9 before 1.9.5 and 1.10 before 1.10.3 and 15.04 before 15.04.0 are vulnerable to users receiving watchlist notifications about pages they do not have access to anymore.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mahara mahara 1.10.1
mahara mahara 1.8.2
mahara mahara 1.9.0
mahara mahara 1.8.6
mahara mahara 1.10.2
mahara mahara 1.8.0
mahara mahara 1.9.1
mahara mahara 1.9.3
mahara mahara 1.8.4
mahara mahara 1.8.5
mahara mahara 1.8
mahara mahara 1.8.1
mahara mahara 1.9.4
mahara mahara 15.04
mahara mahara 1.9.2
mahara mahara 1.8.3
mahara mahara 1.9
mahara mahara 1.10.0
mahara mahara 1.10
CVE-2017-1000144 LOW

Mahara 1.9 before 1.9.6 and 1.10 before 1.10.4 and 15.04 before 15.04.1 are vulnerable to a site admin or institution admin being able to place HTML and Javascript into an institution display name, which will be displayed to other users unescaped on some Mahara system pages.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara 1.10.1
mahara mahara 1.9.0
mahara mahara 1.10.2
mahara mahara 1.10.3
mahara mahara 1.9.1
mahara mahara 1.9.3
mahara mahara 1.9.4
mahara mahara 15.04
mahara mahara 1.9.2
mahara mahara 15.04.0
mahara mahara 1.9.5
mahara mahara 1.9
mahara mahara 1.10.0
mahara mahara 1.10
CVE-2017-1000145 MEDIUM

Mahara 1.9 before 1.9.7 and 1.10 before 1.10.5 and 15.04 before 15.04.2 are vulnerable to anonymous comments being able to be placed on artefact detail pages even when the site administrator had disallowed anonymous comments.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mahara mahara 1.10.1
mahara mahara 15.04.1
mahara mahara 1.9.0
mahara mahara 1.9.6
mahara mahara 1.10.2
mahara mahara 1.10.4
mahara mahara 1.10.3
mahara mahara 1.9.1
mahara mahara 1.9.3
mahara mahara 1.9.4
mahara mahara 15.04
mahara mahara 1.9.2
mahara mahara 15.04.0
mahara mahara 1.9.5
mahara mahara 1.9
mahara mahara 1.10.0
mahara mahara 1.10
CVE-2017-1000146 LOW

Mahara 1.9 before 1.9.7 and 1.10 before 1.10.5 and 15.04 before 15.04.2 are vulnerable to the arbitrary execution of Javascript in the browser of a logged-in user because the title of the portfolio page was not being properly escaped in the AJAX script that updates the Add/remove watchlist link on artefact detail pages.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara 1.10.1
mahara mahara 15.04.1
mahara mahara 1.9.0
mahara mahara 1.9.6
mahara mahara 1.10.2
mahara mahara 1.10.4
mahara mahara 1.10.3
mahara mahara 1.9.1
mahara mahara 1.9.3
mahara mahara 1.9.4
mahara mahara 15.04
mahara mahara 1.9.2
mahara mahara 15.04.0
mahara mahara 1.9.5
mahara mahara 1.9
mahara mahara 1.10.0
mahara mahara 1.10
CVE-2017-1000147 MEDIUM

Mahara 1.9 before 1.9.8 and 1.10 before 1.10.6 and 15.04 before 15.04.3 are vulnerable to perform a cross-site request forgery (CSRF) attack on the uploader contained in Mahara's filebrowser widget. This could allow an attacker to trick a Mahara user into unknowingly uploading malicious files into their Mahara account.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mahara mahara 1.10.1
mahara mahara 15.04.1
mahara mahara 1.9.0
mahara mahara 1.9.6
mahara mahara 1.9.7
mahara mahara 1.10.2
mahara mahara 1.10.4
mahara mahara 1.10.3
mahara mahara 15.04.2
mahara mahara 1.9.1
mahara mahara 1.9.3
mahara mahara 1.10.5
mahara mahara 1.9.4
mahara mahara 15.04
mahara mahara 1.9.2
mahara mahara 15.04.0
mahara mahara 1.9.5
mahara mahara 1.9
mahara mahara 1.10.0
mahara mahara 1.10
CVE-2017-1000148 MEDIUM

Mahara 15.04 before 15.04.8 and 15.10 before 15.10.4 and 16.04 before 16.04.2 are vulnerable to PHP code execution as Mahara would pass portions of the XML through the PHP "unserialize()" function when importing a skin from an XML file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-502,

Products Affected

Vendor Product Version
mahara mahara 15.04.4
mahara mahara 15.04.1
mahara mahara 16.04
mahara mahara 16.04.1
mahara mahara 15.10.2
mahara mahara 15.04.5
mahara mahara 15.10.1
mahara mahara 15.04.2
mahara mahara 15.04
mahara mahara 15.04.6
mahara mahara 15.04.3
mahara mahara 15.04.0
mahara mahara 16.04.0
mahara mahara 15.10.3
mahara mahara 15.10.0
mahara mahara 15.04.7
CVE-2017-1000149 LOW

Mahara 1.10 before 1.10.9 and 15.04 before 15.04.6 and 15.10 before 15.10.2 are vulnerable to XSS due to window.opener (target="_blank" and window.open())

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara 1.10.1
mahara mahara 15.04.4
mahara mahara 15.10
mahara mahara 15.04.1
mahara mahara 1.10.7
mahara mahara 1.10.2
mahara mahara 15.04.5
mahara mahara 15.10.1
mahara mahara 1.10.4
mahara mahara 1.10.8
mahara mahara 1.10.6
mahara mahara 1.10.3
mahara mahara 15.04.2
mahara mahara 1.10.5
mahara mahara 15.04
mahara mahara 15.04.3
mahara mahara 15.04.0
mahara mahara 15.10.0
mahara mahara 1.10.0
mahara mahara 1.10
CVE-2017-1000150 MEDIUM

Mahara 15.04 before 15.04.7 and 15.10 before 15.10.3 are vulnerable to prevent session IDs from being regenerated on login or logout. This makes users of the site more vulnerable to session fixation attacks.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-384,

Products Affected

Vendor Product Version
mahara mahara 15.04.2
mahara mahara 15.04.4
mahara mahara 15.04.1
mahara mahara 15.04
mahara mahara 15.04.6
mahara mahara 15.04.3
mahara mahara 15.10.2
mahara mahara 15.04.0
mahara mahara 15.04.5
mahara mahara 15.10.1
mahara mahara 15.10.0
CVE-2017-1000151 MEDIUM

Mahara 15.04 before 15.04.9 and 15.10 before 15.10.5 and 16.04 before 16.04.3 are vulnerable to passwords or other sensitive information being passed by unusual parameters to end up in an error log.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mahara mahara 15.04.8
mahara mahara 16.04.2
mahara mahara 15.04.4
mahara mahara 15.04.1
mahara mahara 16.04
mahara mahara 16.04.1
mahara mahara 15.10.2
mahara mahara 15.04.5
mahara mahara 15.10.1
mahara mahara 15.04.2
mahara mahara 15.10.4
mahara mahara 15.04
mahara mahara 15.04.6
mahara mahara 15.04.3
mahara mahara 15.04.0
mahara mahara 16.04.0
mahara mahara 15.10.3
mahara mahara 15.10.0
mahara mahara 15.04.7
CVE-2017-1000152 HIGH

Mahara 15.04 before 15.04.7 and 15.10 before 15.10.3 running PHP 5.3 are vulnerable to one user being logged in as another user on a separate computer as the same session ID is served. This situation can occur when a user takes an action that forces another user to be logged out of Mahara, such as an admin changing another user's account settings.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mahara mahara 15.04.2
mahara mahara 15.04.4
mahara mahara 15.04.1
mahara mahara 15.04
mahara mahara 15.04.6
mahara mahara 15.04.3
mahara mahara 15.10.2
mahara mahara 15.04.0
mahara mahara 15.04.5
mahara mahara 15.10.1
mahara mahara 15.10.0
CVE-2017-1000153 HIGH

Mahara 15.04 before 15.04.10 and 15.10 before 15.10.6 and 16.04 before 16.04.4 are vulnerable to incorrect access control after the password reset link is sent via email and then user changes default email, Mahara fails to invalidate old link.Consequently the link in email can be used to gain access to the user's account.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-732,

Products Affected

Vendor Product Version
mahara mahara 15.04.8
mahara mahara 16.04.2
mahara mahara 15.04.4
mahara mahara 16.04.3
mahara mahara 15.04.9
mahara mahara 15.04.1
mahara mahara 16.04
mahara mahara 16.04.1
mahara mahara 15.10.2
mahara mahara 15.10.5
mahara mahara 15.04.5
mahara mahara 15.10.1
mahara mahara 15.04.2
mahara mahara 15.10.4
mahara mahara 15.04
mahara mahara 15.04.6
mahara mahara 15.04.3
mahara mahara 15.04.0
mahara mahara 16.04.0
mahara mahara 15.10.3
mahara mahara 15.10.0
mahara mahara 15.04.7
CVE-2017-1000154 HIGH

Mahara 15.04 before 15.04.8 and 15.10 before 15.10.4 and 16.04 before 16.04.2 are vulnerable to some authentication methods, which do not use Mahara's built-in login form, still allowing users to log in even if their institution was expired or suspended.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
mahara mahara 15.04.4
mahara mahara 15.04.1
mahara mahara 16.04
mahara mahara 16.04.1
mahara mahara 15.10.2
mahara mahara 15.04.5
mahara mahara 15.10.1
mahara mahara 15.04.2
mahara mahara 15.04
mahara mahara 15.04.6
mahara mahara 15.04.3
mahara mahara 15.04.0
mahara mahara 16.04.0
mahara mahara 15.10.3
mahara mahara 15.10.0
mahara mahara 15.04.7
CVE-2017-1000155 MEDIUM

Mahara 15.04 before 15.04.8 and 15.10 before 15.10.4 and 16.04 before 16.04.2 are vulnerable to profile pictures being accessed without any access control checks consequently allowing any of a user's uploaded profile pictures to be viewable by anyone, whether or not they were currently selected as the "default" or used in any pages.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mahara mahara 15.04.4
mahara mahara 15.04.1
mahara mahara 16.04
mahara mahara 16.04.1
mahara mahara 15.10.2
mahara mahara 15.04.5
mahara mahara 15.10.1
mahara mahara 15.04.2
mahara mahara 15.04
mahara mahara 15.04.6
mahara mahara 15.04.3
mahara mahara 15.04.0
mahara mahara 16.04.0
mahara mahara 15.10.3
mahara mahara 15.10.0
mahara mahara 15.04.7
CVE-2017-1000156 MEDIUM

Mahara 15.04 before 15.04.9 and 15.10 before 15.10.5 and 16.04 before 16.04.3 are vulnerable to a group's configuration page being editable by any group member even when they didn't have the admin role.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,

Products Affected

Vendor Product Version
mahara mahara 15.04.8
mahara mahara 16.04.2
mahara mahara 15.04.4
mahara mahara 15.04.1
mahara mahara 16.04
mahara mahara 16.04.1
mahara mahara 15.10.2
mahara mahara 15.04.5
mahara mahara 15.10.1
mahara mahara 15.04.2
mahara mahara 15.10.4
mahara mahara 15.04
mahara mahara 15.04.6
mahara mahara 15.04.3
mahara mahara 15.04.0
mahara mahara 16.04.0
mahara mahara 15.10.3
mahara mahara 15.10.0
mahara mahara 15.04.7
CVE-2017-1000157 LOW

Mahara 15.04 before 15.04.13 and 16.04 before 16.04.7 and 16.10 before 16.10.4 and 17.04 before 17.04.2 are vulnerable to recording plain text passwords in the event_log table during the user creation process if full event logging was turned on.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mahara mahara 15.04.8
mahara mahara 16.04.2
mahara mahara 15.04.11
mahara mahara 15.04.9
mahara mahara 15.04.1
mahara mahara 15.04.12
mahara mahara 16.04.4
mahara mahara 16.10
mahara mahara 16.10.2
mahara mahara 15.04.2
mahara mahara 17.04.0
mahara mahara 15.04
mahara mahara 15.04.6
mahara mahara 15.04.3
mahara mahara 15.04.0
mahara mahara 15.04.4
mahara mahara 16.04.3
mahara mahara 16.04
mahara mahara 16.04.1
mahara mahara 15.04.10
mahara mahara 16.04.6
mahara mahara 15.04.5
mahara mahara 16.10.3
mahara mahara 16.04.5
mahara mahara 16.10.0
mahara mahara 16.10.1
mahara mahara 16.04.0
mahara mahara 17.04
mahara mahara 17.04.1
mahara mahara 15.04.7
CVE-2017-1000171 MEDIUM

Mahara Mobile before 1.2.1 is vulnerable to passwords being sent to the Mahara access log in plain text.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-532,

Products Affected

Vendor Product Version
mahara mahara_mobile *
CVE-2017-14163 MEDIUM

An issue was discovered in Mahara before 15.04.14, 16.x before 16.04.8, 16.10.x before 16.10.5, and 17.x before 17.04.3. When one closes the browser without logging out of Mahara, the value in the usr_session table is not removed. If someone were to open a browser, visit the Mahara site, and adjust the 'mahara' cookie to the old value, they can get access to the user's account.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-384,

Products Affected

Vendor Product Version
mahara mahara 15.04.8
mahara mahara 16.04.2
mahara mahara 15.04.11
mahara mahara 15.04.9
mahara mahara 16.10.4
mahara mahara 15.04.1
mahara mahara 17.04.2
mahara mahara 15.04.12
mahara mahara 16.04.4
mahara mahara 16.10
mahara mahara 16.10.2
mahara mahara 15.04.2
mahara mahara 17.04.0
mahara mahara 15.04
mahara mahara 15.04.6
mahara mahara 15.04.3
mahara mahara 15.04.0
mahara mahara 15.04.4
mahara mahara 16.04.3
mahara mahara 16.04
mahara mahara 16.04.1
mahara mahara 16.04.7
mahara mahara 15.04.10
mahara mahara 16.04.6
mahara mahara 15.04.5
mahara mahara 15.04.13
mahara mahara 16.10.3
mahara mahara 16.04.5
mahara mahara 16.10.0
mahara mahara 16.10.1
mahara mahara 16.04.0
mahara mahara 17.04
mahara mahara 17.04.1
mahara mahara 15.04.7
CVE-2017-14752 LOW

Mahara 15.04 before 15.04.15, 16.04 before 16.04.9, 16.10 before 16.10.6, and 17.04 before 17.04.4 are vulnerable to a user submitting a potential dangerous payload, e.g., XSS code, to be saved as their first name, last name, or display name in the profile fields that can cause issues such as escalation of privileges or unknown execution of malicious code when replying to messages in Mahara.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara 15.04.8
mahara mahara 16.04.2
mahara mahara 15.04.11
mahara mahara 15.04.14
mahara mahara 15.04.9
mahara mahara 16.10.4
mahara mahara 16.04.8
mahara mahara 15.04.1
mahara mahara 17.04.2
mahara mahara 15.04.12
mahara mahara 16.04.4
mahara mahara 16.10
mahara mahara 16.10.2
mahara mahara 15.04.2
mahara mahara 17.04.0
mahara mahara 15.04
mahara mahara 15.04.6
mahara mahara 15.04.3
mahara mahara 15.04.0
mahara mahara 15.04.4
mahara mahara 16.04.3
mahara mahara 16.04
mahara mahara 16.04.1
mahara mahara 16.04.7
mahara mahara 15.04.10
mahara mahara 17.04.3
mahara mahara 16.04.6
mahara mahara 15.04.5
mahara mahara 15.04.13
mahara mahara 16.10.3
mahara mahara 16.04.5
mahara mahara 16.10.0
mahara mahara 16.10.1
mahara mahara 16.10.5
mahara mahara 16.04.0
mahara mahara 17.04
mahara mahara 17.04.1
mahara mahara 15.04.7
CVE-2017-15273 LOW

Mahara 15.04 before 15.04.15, 16.04 before 16.04.9, 16.10 before 16.10.6, and 17.04 before 17.04.4 are vulnerable to a user submitting a potential dangerous payload, e.g., XSS code, to be saved as titles in internal artefacts.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara 15.04.8
mahara mahara 16.04.2
mahara mahara 15.04.11
mahara mahara 15.04.9
mahara mahara 16.10.4
mahara mahara 16.04.8
mahara mahara 15.04.1
mahara mahara 17.04.2
mahara mahara 15.04.12
mahara mahara 16.04.4
mahara mahara 16.10
mahara mahara 16.10.2
mahara mahara 15.04.2
mahara mahara 17.04.0
mahara mahara 15.04
mahara mahara 15.04.6
mahara mahara 15.04.3
mahara mahara 15.04.0
mahara mahara 15.04.4
mahara mahara 16.04.3
mahara mahara 16.04
mahara mahara 16.04.1
mahara mahara 16.04.7
mahara mahara 15.04.10
mahara mahara 17.04.3
mahara mahara 16.04.6
mahara mahara 15.04.5
mahara mahara 15.04.13
mahara mahara 16.10.3
mahara mahara 16.04.5
mahara mahara 16.10.0
mahara mahara 16.10.1
mahara mahara 16.10.5
mahara mahara 16.04.0
mahara mahara 15.04.15
mahara mahara 17.04
mahara mahara 17.04.1
mahara mahara 15.04.7
CVE-2017-17454 LOW

Mahara 16.10 before 16.10.7 and 17.04 before 17.04.5 and 17.10 before 17.10.2 have a Cross Site Scripting (XSS) vulnerability when a user enters invalid UTF-8 characters. These are now going to be discarded in Mahara along with NULL characters and invalid Unicode characters. Mahara will also avoid direct $_GET and $_POST usage where possible, and instead use param_exists() and the correct param_*() function to fetch the expected value.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara *
CVE-2017-17455 MEDIUM

Mahara 16.10 before 16.10.7, 17.04 before 17.04.5, and 17.10 before 17.10.2 are vulnerable to being forced, via a man-in-the-middle attack, to interact with Mahara on the HTTP protocol rather than HTTPS even when an SSL certificate is present.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-295,

Products Affected

Vendor Product Version
mahara mahara *
CVE-2017-9551 MEDIUM

Mahara 15.04 before 15.04.14 and 16.04 before 16.04.8 and 16.10 before 16.10.5 and 17.04 before 17.04.3 are vulnerable to a user submitting potential dangerous payload, e.g. XSS code, to be saved as their name in the usr_registration table. The values are then emailed to the the user and administrator and if accepted become part of the new user's account.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara 15.04.8
mahara mahara 16.04.2
mahara mahara 15.04.11
mahara mahara 15.04.9
mahara mahara 16.10.4
mahara mahara 15.04.1
mahara mahara 17.04.2
mahara mahara 15.04.12
mahara mahara 16.04.4
mahara mahara 16.10
mahara mahara 16.10.2
mahara mahara 15.04.2
mahara mahara 17.04.0
mahara mahara 15.04
mahara mahara 15.04.6
mahara mahara 15.04.3
mahara mahara 15.04.0
mahara mahara 15.04.4
mahara mahara 16.04.3
mahara mahara 16.04
mahara mahara 16.04.1
mahara mahara 16.04.7
mahara mahara 15.04.10
mahara mahara 16.04.6
mahara mahara 15.04.5
mahara mahara 15.04.13
mahara mahara 16.10.3
mahara mahara 16.04.5
mahara mahara 16.10.0
mahara mahara 16.10.1
mahara mahara 16.04.0
mahara mahara 17.04
mahara mahara 17.04.1
mahara mahara 15.04.7
CVE-2018-11195 LOW

Mahara 17.04 before 17.04.8 and 17.10 before 17.10.5 and 18.04 before 18.04.1 are vulnerable to the browser "back and refresh" attack. This allows malicious users with physical access to the web browser of a Mahara user, after they have logged in, to potentially gain access to their Mahara credentials.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mahara mahara *
mahara mahara 18.04.0
CVE-2018-11196 MEDIUM

Mahara 17.04 before 17.04.8 and 17.10 before 17.10.5 and 18.04 before 18.04.1 can be used as medium to transmit viruses by placing infected files into a Leap2A archive and uploading that to Mahara. In contrast to other ZIP files that are uploaded, ClamAV (when activated) does not check Leap2A archives for viruses, allowing malicious files to be available for download. While files cannot be executed on Mahara itself, Mahara can be used to transfer such files to user computers.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-434,

Products Affected

Vendor Product Version
mahara mahara *
mahara mahara 18.04.0
CVE-2018-11565 MEDIUM

Mahara 17.04 before 17.04.8 and 17.10 before 17.10.5 and 18.04 before 18.04.1 are vulnerable to mentioning the usernames that are already taken by people registered in the system rather than masking that information.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mahara mahara *
mahara mahara 18.04.0
CVE-2018-6182 MEDIUM

Mahara 16.10 before 16.10.9 and 17.04 before 17.04.7 and 17.10 before 17.10.4 are vulnerable to bad input when TinyMCE is bypassed by POST packages. Therefore, Mahara should not rely on TinyMCE's code stripping alone but also clean input on the server / PHP side as one can create own packets of POST data containing bad content with which to hit the server.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara *
CVE-2019-9708 MEDIUM

An issue was discovered in Mahara 17.10 before 17.10.8, 18.04 before 18.04.4, and 18.10 before 18.10.1. A site administrator can suspend the system user (root), causing all users to be locked out from the system.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mahara mahara *
CVE-2019-9709 LOW

An issue was discovered in Mahara 17.10 before 17.10.8, 18.04 before 18.04.4, and 18.10 before 18.10.1. The collection title is vulnerable to Cross Site Scripting (XSS) due to not escaping it when viewing the collection's SmartEvidence overview page (if that feature is turned on). This can be exploited by any logged-in user.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara *
CVE-2020-15907 MEDIUM

In Mahara 19.04 before 19.04.6, 19.10 before 19.10.4, and 20.04 before 20.04.1, certain places could execute file or folder names containing JavaScript.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara *
CVE-2020-9282 MEDIUM

In Mahara 18.10 before 18.10.5, 19.04 before 19.04.4, and 19.10 before 19.10.2, certain personal information is discoverable inspecting network responses on the 'Edit access' screen when sharing portfolios.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mahara mahara *
CVE-2020-9386 MEDIUM

In Mahara 18.10 before 18.10.5, 19.04 before 19.04.4, and 19.10 before 19.10.2, file metadata information is disclosed to group members in the Elasticsearch result list despite them not having access to that artefact anymore.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mahara mahara *
CVE-2020-9387 LOW

In Mahara 19.04 before 19.04.5 and 19.10 before 19.10.3, account details are shared in the Elasticsearch results for accounts that are not accessible when the config setting 'Isolated institutions' is turned on.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 2.8 1.4

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mahara mahara 20.04
mahara mahara *
CVE-2021-29349 MEDIUM

Mahara 20.10 is affected by Cross Site Request Forgery (CSRF) that allows a remote attacker to remove inbox-mail on the server. The application fails to validate the CSRF token for a POST request. An attacker can craft a module/multirecipientnotification/inbox.php pieform_delete_all_notifications request, which leads to removing all messages from a mailbox.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mahara mahara 20.10
CVE-2021-40848 MEDIUM

In Mahara before 20.04.5, 20.10.3, 21.04.2, and 21.10.0, exported CSV files could contain characters that a spreadsheet program could interpret as a command, leading to execution of a malicious string locally on a device, aka CSV injection.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-1236,

Products Affected

Vendor Product Version
mahara mahara *
mahara mahara 21.10.0
CVE-2021-40849 HIGH

In Mahara before 20.04.5, 20.10.3, 21.04.2, and 21.10.0, the account associated with a web services token is vulnerable to being exploited and logged into, resulting in information disclosure (at a minimum) and often escalation of privileges.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-613,

Products Affected

Vendor Product Version
mahara mahara *
mahara mahara 21.10.0
CVE-2021-43264 LOW

In Mahara before 20.04.5, 20.10.3, 21.04.2, and 21.10.0, adjusting the path component for the page help file allows attackers to bypass the intended access control for HTML files via directory traversal. It replaces the - character with the / character.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 1.8 1.4

CVSS 2.0

Severity: LOW

Problem Type: CWE-22,

Products Affected

Vendor Product Version
mahara mahara *
CVE-2021-43265 LOW

In Mahara before 20.04.5, 20.10.3, 21.04.2, and 21.10.0, certain tag syntax could be used for XSS, such as via a SCRIPT element.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara *
CVE-2021-43266 MEDIUM

In Mahara before 20.04.5, 20.10.3, 21.04.2, and 21.10.0, exporting collections via PDF export could lead to code execution via shell metacharacters in a collection name. Additional, in Mahara before 20.10.4, 21.04.3, and 21.10.1, exporting collections via PDF export could cause code execution

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H 1.3 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
mahara mahara *
CVE-2022-24111 MEDIUM

In Mahara 21.04 before 21.04.3 and 21.10 before 21.10.1, portfolios created in groups that have not been shared with non-group members and portfolios created on the site and institution levels can be viewed without requiring a login if the URL to these portfolios is known.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-306,

Products Affected

Vendor Product Version
mahara mahara *
mahara mahara 21.10.0
CVE-2022-24694 MEDIUM

In Mahara 20.10 before 20.10.4, 21.04 before 21.04.3, and 21.10 before 21.10.1, the names of folders in the Files area can be seen by a person not owning the folders. (Only folder names are affected. Neither file names nor file contents are affected.)

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-552,

Products Affected

Vendor Product Version
mahara mahara *
mahara mahara 21.10.0
CVE-2022-28892 MEDIUM

Mahara before 20.10.5, 21.04.4, 21.10.2, and 22.04.0 is vulnerable to Cross Site Request Forgery (CSRF) because randomly generated tokens are too easily guessable.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mahara mahara *
mahara mahara 22.04.0
CVE-2022-29584 LOW

Mahara before 20.10.5, 21.04.4, 21.10.2, and 22.04.0 allows stored XSS when a particular Cascading Style Sheets (CSS) class for embedly is used, and JavaScript code is constructed to perform an action.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mahara mahara *
mahara mahara 22.04.0
CVE-2022-29585 MEDIUM

In Mahara before 20.10.5, 21.04.4, 21.10.2, and 22.04.0, a site using Isolated Institutions is vulnerable if more than ten groups are used. They are all shown from page 2 of the group results list (rather than only being shown for the institution that the viewer is a member of).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-276,

Products Affected

Vendor Product Version
mahara mahara *
mahara mahara 22.04.0
CVE-2022-33913 MEDIUM

In Mahara 21.04 before 21.04.6, 21.10 before 21.10.4, and 22.04.2, files can sometimes be downloaded through thumb.php with no permission check.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-862,

Products Affected

Vendor Product Version
mahara mahara 22.04.2
mahara mahara *
CVE-2022-42707

In Mahara 21.04 before 21.04.7, 21.10 before 21.10.5, 22.04 before 22.04.3, and 22.10 before 22.10.0, embedded images are accessible without a sufficient permission check under certain conditions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
mahara mahara 22.10.0
mahara mahara *
CVE-2022-44544

Mahara 21.04 before 21.04.7, 21.10 before 21.10.5, 22.04 before 22.04.3, and 22.10 before 22.10.0 potentially allow a PDF export to trigger a remote shell if the site is running on Ubuntu and the flag -dSAFER is not set with Ghostscript.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
mahara mahara 22.10.0
mahara mahara *
CVE-2022-45133

Mahara 21.10 before 21.10.6, 22.04 before 22.04.4, and 22.10 before 22.10.1 allows unsafe font upload for skins. A particularly structured XML file could allow one to traverse the server to obtain access to secure files or cause code execution based on the payload.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N 3.9 2.5

Products Affected

Vendor Product Version
mahara mahara *
CVE-2022-45134

Mahara 21.10 before 21.10.6, 22.04 before 22.04.4, and 22.10 before 22.10.1 deserializes user input unsafely during skin import. A particularly structured XML file could cause code execution when being processed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
mahara mahara *
CVE-2023-47799

Mahara before 22.10.4 and 23.x before 23.04.4 allows information disclosure if the experimental HTML bulk export is used via the administration interface or via the CLI, and the resulting export files are given to the account holders. They may contain images of other account holders because the cache is not cleared after the files of one account are exported.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
mahara mahara *
CVE-2024-35203

Mahara before 22.10.6, 23.04.6, and 24.04.1 allows cross-site scripting (XSS) via a file, with JavaScript code as part of its name, that is uploaded via the Mahara filebrowser system.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

Products Affected

Vendor Product Version
mahara mahara *
CVE-2024-39335

Supported versions of Mahara 24.04 before 24.04.1 and 23.04 before 23.04.6 are vulnerable to information being disclosed to an institution administrator under certain conditions via the 'Current submissions' page: Administration -> Groups -> Submissions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
mahara mahara *
CVE-2024-39923

An issue was discovered in Mahara 24.04 before 24.04.2 and 23.04 before 23.04.7. The About, Contact, and Help footer links can be set up to be vulnerable to Cross Site Scripting (XSS) due to not sanitising the values. These links can only be set up by an admin but are clickable by any logged-in person.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

Products Affected

Vendor Product Version
mahara mahara *
CVE-2024-45753

In Mahara 23.04.8 and 24.04.4, the external RSS feed block can cause XSS if the external feed XML has a malicious value for the link attribute.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

Products Affected

Vendor Product Version
mahara mahara *
CVE-2024-47192

An issue was discovered in Mahara 23.04.8 and 24.04.4. The use of a malicious export download URL can allow an attacker to download files that they do not have permission to download.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

Products Affected

Vendor Product Version
mahara mahara *
CVE-2024-47853

An issue was discovered in Mahara 23.04.8 and 24.04.4. Attackers may utilize escalation of privileges in certain cases when logging into Mahara with Learning Tools Interoperability (LTI).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
mahara mahara *
CVE-2025-29992

Mahara before 24.04.9 exposes database connection information if the database becomes unreachable, e.g., due to the database server being temporarily down or too busy.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
mahara mahara *