Unrated severityNVD Advisory· Published Mar 9, 2020· Updated Aug 4, 2024
CVE-2020-9386
CVE-2020-9386
Description
In Mahara 18.10 before 18.10.5, 19.04 before 19.04.4, and 19.10 before 19.10.2, file metadata information is disclosed to group members in the Elasticsearch result list despite them not having access to that artefact anymore.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Mahara/Maharadescription
- Range: <18.10.5, <19.04.4, <19.10.2
Patches
Vulnerability mechanics
References
2- bugs.launchpad.net/mahara/+bug/1840201mitrex_refsource_MISC
- mahara.org/interaction/forum/topic.phpmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.