Mahara Mobile
1 CVEs
product
Monthly
Mahara Mobile before 1.2.1 is vulnerable to passwords being sent to the Mahara access log in plain text. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Information Disclosure
Mahara Mobile
NVD
GitHub
CVSS 3.0
9.8
EPSS
0.3%
EPSS 0%
CVSS 9.8
CRITICAL
Act Now
Mahara Mobile before 1.2.1 is vulnerable to passwords being sent to the Mahara access log in plain text. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Information Disclosure
Mahara Mobile
NVD
GitHub