First published: Thu Apr 28 2022(Updated: )
In Mahara before 20.10.5, 21.04.4, 21.10.2, and 22.04.0, a site using Isolated Institutions is vulnerable if more than ten groups are used. They are all shown from page 2 of the group results list (rather than only being shown for the institution that the viewer is a member of).
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Mahara Mahara | <20.10.5 | |
Mahara Mahara | >=21.04.0<21.04.4 | |
Mahara Mahara | >=21.10.0<21.10.2 | |
Mahara Mahara | =22.04.0-rc1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Vulnerability CVE-2022-29585 is a vulnerability found in Mahara before versions 20.10.5, 21.04.4, 21.10.2, and 22.04.0.
The severity of vulnerability CVE-2022-29585 is high, with a severity value of 7.5.
Vulnerability CVE-2022-29585 affects Mahara versions before 20.10.5, 21.04.4, 21.10.2, and 22.04.0.
To fix vulnerability CVE-2022-29585, it is recommended to upgrade Mahara to version 20.10.5, 21.04.4, 21.10.2, or 22.04.0.
For more information about vulnerability CVE-2022-29585 in Mahara, you can refer to the following references: [Link 1](https://bugs.launchpad.net/mahara/+bug/1922226), [Link 2](https://mahara.org/interaction/forum/topic.php?id=9093).