Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Mahara before 1.0.15, 1.1.x before 1.1.9, and 1.2.x before 1.2.5 has improper configuration options for authentication plugins associated with logins that use the single sign-on (SSO) functionality, which allows remote attackers to bypass authentication via an empty password. NOTE: some of these details are obtained from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mahara安全绕过漏洞
Vulnerability Description
Mahara是一个开源的电子文件夹、网络日志、履历表生成器和社会联网系统。 Mahara 1.0.15之前的,1.1.9之前的1.1.x,和1.2.5之前的1.2.x版本在使用single sign-on (SSO)功能登录的认证插件中存在不正确的配置选项。远程攻击者可以借助空密码绕过认证。
CVSS Information
N/A
Vulnerability Type
N/A