Candidate: CVE-2009-0660
PublicDate: 2009-03-11 14:19:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0660
Description:
 Multiple cross-site scripting (XSS) vulnerabilities in Mahara 1.0 before
 1.0.10 and 1.1 before 1.1.2 allow remote attackers to inject arbitrary web
 script or HTML via a (1) profile and (2) blog, a different vulnerability
 than CVE-2009-0487.
Ubuntu-Description:
Notes:
Bugs:
 https://bugs.launchpad.net/ubuntu/+source/mahara/+bug/340863
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_mahara:
 other: https://bugs.launchpad.net/ubuntu/+source/mahara/+bug/340863
upstream_mahara: released (1.0.10, 1.1.2)
dapper_mahara: DNE
gutsy_mahara: DNE
hardy_mahara: DNE
intrepid_mahara: needed (reached end-of-life)
jaunty_mahara: released (1.0.9-2ubuntu0.2)
karmic_mahara: not-affected (1.1.5-1ubuntu0.1)
devel_mahara: not-affected (1.2.0-2)