VYPR
Unrated severityNVD Advisory· Published Nov 7, 2019· Updated Aug 6, 2024

CVE-2013-1426

CVE-2013-1426

Description

Cross-site Scripting (XSS) in Mahara before 1.5.9 and 1.6.x before 1.6.4 allows remote attackers to inject arbitrary web script or HTML via the TinyMCE editor.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Mahara (software)/Maharallm-fuzzy2 versions
    <1.5.9 || >=1.6.0 <1.6.4+ 1 more
    • (no CPE)range: <1.5.9 || >=1.6.0 <1.6.4
    • (no CPE)range: 1.5.9

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.