In Mahara before 20.04.5, 20.10.3,... CVE-2021-40849

7.5 AV AC AU C I A
发布: 2021-11-03
修订: 2024-11-21

In Mahara before 20.04.5, 20.10.3, 21.04.2, and 21.10.0, the account associated with a web services token is vulnerable to being exploited and logged into, resulting in information disclosure (at a minimum) and often escalation of privileges.

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有5条受影响产品信息