CVE-2011-0440

Cross-site request forgery (CSRF) vulnerability in Mahara 1.2.x before 1.2.7 and 1.3.x before 1.3.4 allows remote attackers to hijack the authentication of arbitrary users for requests that delete blogs.
CSRF
Severity
UNKNOWN
AV:N/AC:M/Au:N/C:N/I:P/A:P
Atk. Vector
NETWORK
Atk. Complexity
MEDIUM
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
VendorProductVersion
maharamahara
1.2.0
maharamahara
1.2.0
maharamahara
1.2.0
maharamahara
1.2.0
maharamahara
1.2.0
maharamahara
1.2.0
maharamahara
1.2.0
maharamahara
1.2.0
maharamahara
1.2.0
maharamahara
1.2.1
maharamahara
1.2.2
maharamahara
1.2.3
maharamahara
1.2.4
maharamahara
1.2.5
maharamahara
1.2.6
maharamahara
1.3.0
maharamahara
1.3.0
maharamahara
1.3.0
maharamahara
1.3.0
maharamahara
1.3.0
maharamahara
1.3.0
maharamahara
1.3.1
maharamahara
1.3.2
maharamahara
1.3.3
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
mahara
natty
not-affected
maverick
Fixed 1.2.5-2ubuntu0.1
released
lucid
Fixed 1.2.4-1ubuntu0.2
released
karmic
ignored
hardy
dne
dapper
dne