CVE-2017-1000155

CVE-2017-1000155

Mahara 15.04 before 15.04.8 and 15.10 before 15.10.4 and 16.04 before 16.04.2 are vulnerable to profile pictures being accessed without any access control checks consequently allowing any of a user’s uploaded profile pictures to be viewable by anyone, whether or not they were currently selected as the "default" or used in any pages.

Source: CVE-2017-1000155

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다