Hello Kevin,
Thanks for finding this bug. We'll fix it and will put it into the next
minor release of 1.7.
** Changed in: mahara
Status: New = Triaged
** Changed in: mahara
Importance: Undecided = High
** Changed in: mahara
Assignee: (unassigned) = Robert Lyon (robertl-9)
**
** Changed in: mahara
Status: New = Confirmed
** Changed in: mahara
Importance: Undecided = Medium
--
You received this bug notification because you are a member of Mahara
Contributors, which is subscribed to Mahara.
Matching subscriptions: Subscription for all Mahara Contrib members
** Also affects: mahara/1.8
Importance: Undecided
Status: New
** Changed in: mahara/1.8
Status: New = Fix Committed
** Changed in: mahara/1.8
Milestone: None = 1.8.0rc1
** Changed in: mahara/1.8
Assignee: (unassigned) = Son Nguyen (ngson2000)
** Changed in: mahara/1.8
Public bug reported:
There is wanted some default text to indicate that nothing is currently being
shared initially.
eg view/access.php?id=123
** Affects: mahara
Importance: Wishlist
Assignee: Robert Lyon (robertl-9)
Status: In Progress
--
You received this bug notification
I have looked through the code and fixed all occurrences of not using
brackets () or {}.
Here is the patch https://reviews.mahara.org/2276 for master
--
You received this bug notification because you are a member of Mahara
Contributors, which is subscribed to Mahara.
Matching subscriptions:
** Changed in: mahara
Assignee: Robert Lyon (robertl-9) = Son Nguyen (ngson2000)
** Changed in: mahara/1.8
Assignee: Robert Lyon (robertl-9) = Son Nguyen (ngson2000)
--
You received this bug notification because you are a member of Mahara
Contributors, which is subscribed to Mahara.
patch submitted
https://reviews.mahara.org/#/c/2277/
--
You received this bug notification because you are a member of Mahara
Contributors, which is subscribed to Mahara.
Matching subscriptions: Subscription for all Mahara Contrib members
https://bugs.launchpad.net/bugs/1190720
Title:
Edit
*** This bug is a security vulnerability ***
Private security bug reported:
Subject:Found Critical XSS Vulnerability on Your System
Hello,
I found a really critical XSS (Cross Site Scripting) vulnerability on
mahara.org. The vulnerability works as follows:
1) I opened the demo account
8 matches
Mail list logo