Launchpad CVE tracker

CVE 2010-1669

SQL injection vulnerability in Mahara 1.1.x before 1.1.9 and 1.2.x before 1.2.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Related bugs and status

CVE-2010-1669 (Candidate) is related to these bugs:

Bug #602772: Sync mahara 1.2.5-1 (universe) from Debian unstable (main)

		In	Importance	Status
602772	Sync mahara 1.2.5-1 (universe) from Debian unstable (main)	mahara (Ubuntu)	Wishlist	Fix Released
602772	Sync mahara 1.2.5-1 (universe) from Debian unstable (main)	mahara (Ubuntu Jaunty)	Undecided	Fix Released
602772	Sync mahara 1.2.5-1 (universe) from Debian unstable (main)	mahara (Ubuntu Karmic)	Undecided	Fix Released
602772	Sync mahara 1.2.5-1 (universe) from Debian unstable (main)	mahara (Ubuntu Lucid)	Undecided	Fix Released
602772	Sync mahara 1.2.5-1 (universe) from Debian unstable (main)	mahara (Ubuntu Maverick)	Wishlist	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://wiki.mahara.org...
CONFIRM: http://wiki.mahara.org...
BID: 41319
SECUNIA: 40431
XF: mahara-unspecified-sql...

Launchpad.net

CVE 2010-1669

Related bugs and status

Related bugs

References