Lucene search
DebianCVELIST:CVE-2012-2243HistoryNov 24, 2012 - 8:00 p.m.
CVE-2012-2243
2012-11-2420:00:00
debian
www.cve.org
Cross-site scripting (XSS) vulnerability in Mahara 1.4.x before 1.4.5 and 1.5.x before 1.5.4 allows remote attackers to inject arbitrary web script or HTML by uploading an XML file with the xhtml extension, which is rendered inline as script. NOTE: this can be leveraged with CVE-2012-2244 to execute arbitrary code without authentication, as demonstrated by modifying the clamav path.
Related
nvd
nvd
cve
cve
ubuntucve
ubuntucve
cvelist
cvelist
CVE-2012-2244
2012-11-24 20:00:00
CVE-2012-6037
2012-11-24 20:00:00
prion
prion
Cross site scripting
2012-11-24 20:55:00
Authentication flaw
2012-11-24 20:55:00
Cross site scripting
2012-11-24 20:55:00
openvas
openvas
Debian Security Advisory DSA 2591-1 (mahara - several vulnerabilities)
2013-09-18 00:00:00
Debian: Security Advisory (DSA-2591-1)
2013-09-18 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2591-1] mahara security update
2013-01-02 00:00:00
nessus
nessus
Debian DSA-2591-1 : mahara - several vulnerabilities
2012-12-28 00:00:00
debian
debian
[SECURITY] [DSA 2591-1] mahara security update
2012-12-28 01:08:41