CVE-2021-43264

Published: Nov 2, 2021Modified: Nov 21, 2024

3.3

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Exploitability: 1.8 / Impact: 1.4

Source: NVD

Description

In Mahara before 20.04.5, 20.10.3, 21.04.2, and 21.10.0, adjusting the path component for the page help file allows attackers to bypass the intended access control for HTML files via directory traversal. It replaces the - character with the / character.

Affected (3)

Products: Mahara: Mahara

1 product

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Mahara Mahara	From 20.04.0 to 20.04.5
Mahara Mahara	From 20.10.0 to 20.10.3
Mahara Mahara	From 21.04.0 to 21.04.2

Related CWEs

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

References (4)

https://bugs.launchpad.net/mahara/+bug/1944979

Source: cve@mitre.org

ExploitThird Party Advisory

https://mahara.org/interaction/forum/topic.php?id=8954

Source: cve@mitre.org

Vendor Advisory

https://bugs.launchpad.net/mahara/+bug/1944979

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://mahara.org/interaction/forum/topic.php?id=8954

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.