CVE-2018-11565
- Source
- https://cve.org/CVERecord?id=CVE-2018-11565
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-11565.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2018-11565
- Published
- 2018-05-30T21:29:00.690Z
- Modified
- 2026-04-10T04:04:34.800652Z
- Severity
-
- 5.3 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator
- Summary
- [none]
- Details
-
Mahara 17.04 before 17.04.8 and 17.10 before 17.10.5 and 18.04 before 18.04.1 are vulnerable to mentioning the usernames that are already taken by people registered in the system rather than masking that information.
- References
Affected packages
Git / github.com/maharaproject/mahara
Affected ranges
- Type
- GIT
- Repo
- https://github.com/maharaproject/mahara
- Events
-
IntroducedFixedIntroducedFixedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "versions": [ { "introduced": "17.04.0" }, { "fixed": "17.04.8" }, { "introduced": "17.10.0" }, { "fixed": "17.10.5" }, { "introduced": "0" }, { "last_affected": "18.04.0" } ] }
Affected versions
1.*
1.0.0ALPHA1_RELEASE
1.0.0ALPHA2_RELEASE
1.0.0BETA2_RELEASE
1.1.0ALPHA1_RELEASE
1.1.0ALPHA2_RELEASE
1.1.0ALPHA3_RELEASE
1.1.0BETA2_RELEASE
1.1.0BETA4_RELEASE
1.2.0ALPHA2_RELEASE
1.2.0ALPHA3_RELEASE
1.3.0BETA1_RELEASE
1.3.0BETA2_RELEASE
1.4.0ALPHA1_RELEASE
1.7RC1_RELEASE
1.8RC1_RELEASE
1.8RC2_RELEASE
17.*
17.04.0_RELEASE
17.04.1_RELEASE
17.04.2_RELEASE
17.04.3_RELEASE
17.04.4_RELEASE
17.04.5_RELEASE
17.04.6_RELEASE
17.04.7_RELEASE
17.10.0_RELEASE
17.10.1_RELEASE
17.10.2_RELEASE
17.10.3_RELEASE
17.10.4_RELEASE
18.*
18.04.0_RELEASE
18.04RC1_RELEASE
18.04RC2_RELEASE