CVE-2024-39335 | THREATINT

Description

Supported versions of Mahara 24.04 before 24.04.1 and 23.04 before 23.04.6 are vulnerable to information being disclosed to an institution administrator under certain conditions via the 'Current submissions' page: Administration -> Groups -> Submissions.

PUBLISHED Reserved 2024-06-23 | Published 2025-08-26 | Updated 2025-08-27 | Assigner mitre

References

mahara.org/interaction/forum/view.php?id=43

mahara.org/interaction/forum/topic.php?id=9519

cve.org (CVE-2024-39335)

nvd.nist.gov (CVE-2024-39335)

Download JSON