CVE-2017-14752
- Source
- https://cve.org/CVERecord?id=CVE-2017-14752
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-14752.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2017-14752
- Published
- 2017-10-31T18:29:00.313Z
- Modified
- 2026-04-10T03:58:42.406472Z
- Severity
-
- 5.4 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
- Summary
- [none]
- Details
-
Mahara 15.04 before 15.04.15, 16.04 before 16.04.9, 16.10 before 16.10.6, and 17.04 before 17.04.4 are vulnerable to a user submitting a potential dangerous payload, e.g., XSS code, to be saved as their first name, last name, or display name in the profile fields that can cause issues such as escalation of privileges or unknown execution of malicious code when replying to messages in Mahara.
- References
Affected packages
Git / github.com/maharaproject/mahara
Affected ranges
- Type
- GIT
- Repo
- https://github.com/maharaproject/mahara
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "versions": [ { "introduced": "0" }, { "last_affected": "15.04-rc1" }, { "introduced": "0" }, { "last_affected": "15.04-rc2" }, { "introduced": "0" }, { "last_affected": "15.04.0" }, { "introduced": "0" }, { "last_affected": "15.04.1" }, { "introduced": "0" }, { "last_affected": "15.04.2" }, { "introduced": "0" }, { "last_affected": "15.04.3" }, { "introduced": "0" }, { "last_affected": "15.04.4" }, { "introduced": "0" }, { "last_affected": "15.04.5" }, { "introduced": "0" }, { "last_affected": "15.04.6" }, { "introduced": "0" }, { "last_affected": "15.04.7" }, { "introduced": "0" }, { "last_affected": "15.04.8" }, { "introduced": "0" }, { "last_affected": "15.04.9" }, { "introduced": "0" }, { "last_affected": "15.04.10" }, { "introduced": "0" }, { "last_affected": "15.04.11" }, { "introduced": "0" }, { "last_affected": "15.04.12" }, { "introduced": "0" }, { "last_affected": "15.04.13" }, { "introduced": "0" }, { "last_affected": "15.04.14" }, { "introduced": "0" }, { "last_affected": "16.04-rc1" }, { "introduced": "0" }, { "last_affected": "16.04-rc2" }, { "introduced": "0" }, { "last_affected": "16.04.0" }, { "introduced": "0" }, { "last_affected": "16.04.1" }, { "introduced": "0" }, { "last_affected": "16.04.2" }, { "introduced": "0" }, { "last_affected": "16.04.3" }, { "introduced": "0" }, { "last_affected": "16.04.4" }, { "introduced": "0" }, { "last_affected": "16.04.5" }, { "introduced": "0" }, { "last_affected": "16.04.6" }, { "introduced": "0" }, { "last_affected": "16.04.7" }, { "introduced": "0" }, { "last_affected": "16.04.8" }, { "introduced": "0" }, { "last_affected": "16.10-rc1" }, { "introduced": "0" }, { "last_affected": "16.10-rc2" }, { "introduced": "0" }, { "last_affected": "16.10.0" }, { "introduced": "0" }, { "last_affected": "16.10.1" }, { "introduced": "0" }, { "last_affected": "16.10.2" }, { "introduced": "0" }, { "last_affected": "16.10.3" }, { "introduced": "0" }, { "last_affected": "16.10.4" }, { "introduced": "0" }, { "last_affected": "16.10.5" }, { "introduced": "0" }, { "last_affected": "17.04-rc1" }, { "introduced": "0" }, { "last_affected": "17.04-rc2" }, { "introduced": "0" }, { "last_affected": "17.04.0" }, { "introduced": "0" }, { "last_affected": "17.04.1" }, { "introduced": "0" }, { "last_affected": "17.04.2" }, { "introduced": "0" }, { "last_affected": "17.04.3" } ] }
Affected versions
1.*
1.0.0ALPHA1_RELEASE
1.0.0ALPHA2_RELEASE
1.0.0BETA2_RELEASE
1.1.0ALPHA1_RELEASE
1.1.0ALPHA2_RELEASE
1.1.0ALPHA3_RELEASE
1.1.0BETA2_RELEASE
1.1.0BETA4_RELEASE
1.2.0ALPHA2_RELEASE
1.2.0ALPHA3_RELEASE
1.3.0BETA1_RELEASE
1.3.0BETA2_RELEASE
1.4.0ALPHA1_RELEASE
1.7RC1_RELEASE
1.8RC1_RELEASE
1.8RC2_RELEASE
15.*
15.04.0_RELEASE
15.04.10_RELEASE
15.04.11_RELEASE
15.04.12_RELEASE
15.04.13_RELEASE
15.04.14_RELEASE
15.04.1_RELEASE
15.04.2_RELEASE
15.04.3_RELEASE
15.04.4_RELEASE
15.04.5_RELEASE
15.04.6_RELEASE
15.04.7_RELEASE
15.04.8_RELEASE
15.04.9_RELEASE
15.04RC1_RELEASE
15.04RC2_RELEASE
16.*
16.04.0_RELEASE
16.04.1_RELEASE
16.04.2_RELEASE
16.04.3_RELEASE
16.04.4_RELEASE
16.04.5_RELEASE
16.04.6_RELEASE
16.04.7_RELEASE
16.04.8_RELEASE
16.04RC1_RELEASE
16.04RC2_RELEASE
16.10.0_RELEASE
16.10.1_RELEASE
16.10.2_RELEASE
16.10.3_RELEASE
16.10.4_RELEASE
16.10.5_RELEASE
16.10RC1_RELEASE
16.10RC2_RELEASE
17.*
17.04.0_RELEASE
17.04.1_RELEASE
17.04.2_RELEASE
17.04.3_RELEASE
17.04RC1_RELEASE
17.04RC2_RELEASE