CVE-2009-2171

MEDIUM(4.0)

AV:N/AC:L/Au:S/C:P/I:N/A:N

Risk Signal Score10/100 — NIEDRIG

CVSS 4 — Mittel

EPSS-Score

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

Technische Schwere

Beschreibung

Mahara 1.1 before 1.1.5 does not apply permission checks when saving a view that contains artefacts, which allows remote authenticated users to read another user's artefact.

Referenzen

http://mahara.org/interaction/forum/topic.php?id=753
http://mahara.org/interaction/forum/topic.php?id=753