CVE-2009-2170

Mahara <1.0.12, <1.1.5 - XSS

Title source: llm

Description

Multiple cross-site scripting (XSS) vulnerabilities in Mahara 1.0 before 1.0.12 and 1.1 before 1.1.5 allow remote attackers to inject arbitrary web script or HTML via unknown vectors.

References (1)

Scores

EPSS 0.0026
EPSS Percentile 49.4%

Classification

CWE
CWE-79
Status published

Affected Products (28)

mahara/mahara
mahara/mahara
mahara/mahara
mahara/mahara
mahara/mahara
mahara/mahara
mahara/mahara
mahara/mahara
mahara/mahara
mahara/mahara
mahara/mahara
mahara/mahara
mahara/mahara
mahara/mahara
mahara/mahara
... and 13 more

Timeline

Published Jun 23, 2009
Tracked Since Feb 18, 2026