CVE-2011-0439

Cross-site scripting (XSS) vulnerability in Mahara 1.2.x before 1.2.7 and 1.3.x before 1.3.4 allows remote attackers to inject arbitrary web script or HTML via the Pieforms select box.
Cross-site Scripting
Severity
UNKNOWN
AV:N/AC:M/Au:N/C:N/I:P/A:N
Atk. Vector
NETWORK
Atk. Complexity
MEDIUM
Base Score
CVSS 3.x
EPSS Score
Percentile: 68%
VendorProductVersion
maharamahara
1.2.0
maharamahara
1.2.0
maharamahara
1.2.0
maharamahara
1.2.0
maharamahara
1.2.0
maharamahara
1.2.0
maharamahara
1.2.0
maharamahara
1.2.0
maharamahara
1.2.0
maharamahara
1.2.1
maharamahara
1.2.2
maharamahara
1.2.3
maharamahara
1.2.4
maharamahara
1.2.5
maharamahara
1.2.6
maharamahara
1.3.3
maharamahara
1.3.0
maharamahara
1.3.0
maharamahara
1.3.0
maharamahara
1.3.0
maharamahara
1.3.0
maharamahara
1.3.0
maharamahara
1.3.1
maharamahara
1.3.2
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
mahara
natty
not-affected
maverick
Fixed 1.2.5-2ubuntu0.1
released
lucid
Fixed 1.2.4-1ubuntu0.2
released
karmic
ignored
hardy
dne
dapper
dne