Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Mahara 15.04 before 15.04.14 and 16.04 before 16.04.8 and 16.10 before 16.10.5 and 17.04 before 17.04.3 are vulnerable to a user submitting potential dangerous payload, e.g. XSS code, to be saved as their name in the usr_registration table. The values are then emailed to the the user and administrator and if accepted become part of the new user's account.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mahara 安全漏洞
Vulnerability Description
Catalyst Mahara是新西兰Catalyst IT公司的一套社交网络系统。该系统包含博客、履历表生成器、文件管理器等。 Mahara中存在安全漏洞。攻击者可利用该漏洞提交恶意的载荷。以下版本受到影响:Mahara 15.04.14之前的15.04版本,16.04.8之前的16.04版本,16.10.5之前的16.10版本,17.04.3之前的17.04版本。
CVSS Information
N/A
Vulnerability Type
N/A