CVE-2011-0439

CVE-2011-0439

EPSS 1.9%

Cross-site scripting (XSS) vulnerability in Mahara 1.2.x before 1.2.7 and 1.3.x before 1.3.4 allows remote attackers to inject arbitrary web script or HTML via the Pieforms select box.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://mahara.org/interaction/forum/topic.php?id=3205 http://mahara.org/interaction/forum/topic.php?id=3208 http://secunia.com/advisories/43858 https://exchange.xforce.ibmcloud.com/vulnerabilities/66327 http://www.debian.org/security/2011/dsa-2206 http://www.securityfocus.com/bid/47033