03 Nov 2017
CVE-2017-1000147 - CVE Vulnerability
Mahara 1.9 before 1.9.8 and 1.10 before 1.10.6 and 15.04 before 15.04.3 are vulnerable to perform a cross-site request forgery (CSRF) attack on the uploader contained in Mahara's filebrowser widget. This could allow an attacker to trick a Mahara user into unknowingly uploading malicious files into their Mahara account. (CVSS:0.0) (Last Update:2017-11-03)
Vulnerability Details : Mahara 1.9 before 1.9.8 and 1.10 before 1.10.6 and 15.04 before 15.04.3 are vulnerable to perform a cross-site request forgery (CSRF) attack on the uploader contained in Mahara's filebrowser widget. This could allow an attacker to trick a Mahara user into unknowingly uploading malicious files into their Mahara account. Publish Date : 2017-11-03 Last Update Date : 2017-11-03 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2017-1000147
- References For CVE-2017-1000147
| ||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2017-1000147There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |