← Back to CVE List

CVE-2017-1000148

Published: 2017-11-03T18:29Z
Last Modified: 2024-11-21T03:04Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
Mahara 15.04 before 15.04.8 and 15.10 before 15.10.4 and 16.04 before 16.04.2 are vulnerable to PHP code execution as Mahara would pass portions of the XML through the PHP "unserialize()" function when importing a skin from an XML file. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt