CVE-2017-1000138

Published: 2017-11-03T18:29Z

Last Modified: 2024-11-21T03:04Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Mahara 1.10 before 1.10.0 and 15.04 before 15.04.0 are vulnerable to possible cross site scripting when dragging/dropping files into a collection if the file has Javascript code in its title. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt