FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-19 19:12:13 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
5053420c-4935-11df-83fb-0015587e2cc1	mahara -- sql injection vulnerability The Debian security team reports: It was discovered that mahara, an electronic portfolio, weblog, and resume builder is not properly escaping input when generating a unique username based on a remote user name from a single sign-on application. An attacker can use this to compromise the mahara database via crafted user names. Discovery 2010-04-06 Entry 2010-04-18 mahara < 1.1.8 39253 CVE-2010-0400 http://www.debian.org/security/2010/dsa-2030

VuXML ID

Description

5053420c-4935-11df-83fb-0015587e2cc1

mahara -- sql injection vulnerability

The Debian security team reports:

It was discovered that mahara, an electronic portfolio, weblog, and resume builder is not properly escaping input when generating a unique username based on a remote user name from a single sign-on application. An attacker can use this to compromise the mahara database via crafted user names.

Discovery 2010-04-06
Entry 2010-04-18
mahara

< 1.1.8

39253
CVE-2010-0400
http://www.debian.org/security/2010/dsa-2030