CVE-2020-9282

Source
https://cve.org/CVERecord?id=CVE-2020-9282
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-9282.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2020-9282
Published
2020-03-09T14:15:11.523Z
Modified
2026-07-08T20:29:53.997384Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
Summary
[none]
Details

In Mahara 18.10 before 18.10.5, 19.04 before 19.04.4, and 19.10 before 19.10.2, certain personal information is discoverable inspecting network responses on the 'Edit access' screen when sharing portfolios.

References

Affected packages

Git / github.com/maharaproject/mahara

Affected ranges

Type
GIT
Repo
https://github.com/maharaproject/mahara
Events
Database specific
{
    "cpe": "cpe:2.3:a:mahara:mahara:*:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "18.10.0"
        },
        {
            "fixed": "18.10.5"
        },
        {
            "introduced": "19.04.0"
        },
        {
            "fixed": "19.04.4"
        },
        {
            "introduced": "19.10.0"
        },
        {
            "fixed": "19.10.2"
        }
    ],
    "source": "CPE_RANGE"
}

Affected versions

18.*
18.10.0_RELEASE
18.10.1_RELEASE
18.10.2_RELEASE
18.10.3_RELEASE
18.10.4_RELEASE
19.*
19.04.0_RELEASE
19.04.1_RELEASE
19.04.2_RELEASE
19.04.3_RELEASE
19.10.0_RELEASE
19.10.1_RELEASE

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-9282.json"