JavaScript Execution in Mahara File and Folder Names

JavaScript Execution in Mahara File and Folder Names

CVE-2020-15907 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

In Mahara 19.04 before 19.04.6, 19.10 before 19.10.4, and 20.04 before 20.04.1, certain places could execute file or folder names containing JavaScript.

Learn more about our Web Application Penetration Testing UK.