CVE-2009-3299

Publication date 3 November 2009

Last updated 24 July 2024


Ubuntu priority

Cross-site scripting (XSS) vulnerability in the resume blocktype in Mahara before 1.0.13, and 1.1.x before 1.1.7, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Status

Package Ubuntu Release Status
mahara 9.10 karmic
Fixed 1.1.5-1ubuntu0.1
9.04 jaunty
Fixed 1.0.9-2ubuntu0.5
8.10 intrepid Ignored end of life, was needed
8.04 LTS hardy Not in release
6.06 LTS dapper Not in release