Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Mahara before 1.0.13, and 1.1.x before 1.1.7, allows remote authenticated institution administrators to reset a site administrator password via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mahara 权限提升漏洞
Vulnerability Description
Mahara是一个开源的电子文件夹、网络日志、履历表生成器和社会联网系统。 Mahara没有正确地限制机构管理员重置站点管理员的口令,低权限管理员可以获得站点管理员的权限。 Mahara 1.0.13版之前版本和1.1.7版之前的1.1.x版允许远程已鉴别的机构管理员借助未加规定向量,重置站点管理员的口令。
CVSS Information
N/A
Vulnerability Type
N/A