Launchpad.net

CVE 2017-1000146

Mahara 1.9 before 1.9.7 and 1.10 before 1.10.5 and 15.04 before 15.04.2 are vulnerable to the arbitrary execution of Javascript in the browser of a logged-in user because the title of the portfolio page was not being properly escaped in the AJAX script that updates the Add/remove watchlist link on artefact detail pages.

Related bugs and status

CVE-2017-1000146 (Candidate) is related to these bugs:

Bug #1472439: XSS in "add to watchlist" link on artefact detail screen

		In	Importance	Status
1472439	XSS in "add to watchlist" link on artefact detail screen	Mahara	High	Fix Released
1472439	XSS in "add to watchlist" link on artefact detail screen	Mahara 15.04	High	Fix Released
1472439	XSS in "add to watchlist" link on artefact detail screen	Mahara 15.10	High	Fix Released
1472439	XSS in "add to watchlist" link on artefact detail screen	Mahara 1.8	High	Won't Fix
1472439	XSS in "add to watchlist" link on artefact detail screen	Mahara 1.9	High	Fix Released
1472439	XSS in "add to watchlist" link on artefact detail screen	Mahara 1.10	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: https://bugs.launchpad...