CVE-2009-3299
Publication date 3 November 2009
Last updated 24 July 2024
Ubuntu priority
Cross-site scripting (XSS) vulnerability in the resume blocktype in Mahara before 1.0.13, and 1.1.x before 1.1.7, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.