CVE-2020-15907

medium

Description

In Mahara 19.04 before 19.04.6, 19.10 before 19.10.4, and 20.04 before 20.04.1, certain places could execute file or folder names containing JavaScript.

References

https://mahara.org/interaction/forum/topic.php?id=8668

https://bugs.launchpad.net/mahara/+bug/1888163

Details

Source: Mitre, NVD

Published: 2020-08-07

Updated: 2020-08-12

Risk Information

CVSS v2

Base Score: 4.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 6.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N