mahara: cross-site scripting
| Package(s): | mahara | CVE #(s): | CVE-2012-2237 | ||||
| Created: | September 10, 2012 | Updated: | September 12, 2012 | ||||
| Description: | From the Debian advisory:
Emanuel Bronshtein discovered that Mahara, an electronic portfolio, weblog, and resume builder, contains multiple cross-site scripting vulnerabilities due to missing sanitization and insufficient encoding of user-supplied data. | ||||||
| Alerts: |
| ||||||