Lucene search
PRIOn knowledge basePRION:CVE-2011-0440HistoryMar 28, 2011 - 4:55 p.m.
Cross site request forgery (csrf)
2011-03-2816:55:00
PRIOn knowledge base
www.prio-n.com
2
7.6 High
AI Score
Confidence
Low
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:P/A:P
0.003 Low
EPSS
Percentile
69.9%
Cross-site request forgery (CSRF) vulnerability in Mahara 1.2.x before 1.2.7 and 1.3.x before 1.3.4 allows remote attackers to hijack the authentication of arbitrary users for requests that delete blogs.
| CPE | Name | Operator | Version |
|---|---|---|---|
| mahara | eq | 1.2.0 | |
| mahara | eq | 1.2.3 | |
| mahara | eq | 1.2.1 | |
| mahara | eq | 1.2.0 rc1 | |
| mahara | eq | 1.2.0 alpha1 | |
| mahara | eq | 1.2.0 alpha2 | |
| mahara | eq | 1.2.0 beta4 | |
| mahara | eq | 1.2.0 alpha3 | |
| mahara | eq | 1.2.0 beta2 | |
| mahara | eq | 1.2.6 |
Related
ubuntucve
ubuntucve
CVE-2011-0440
2011-03-28 00:00:00
cvelist
cvelist
CVE-2011-0440
2011-03-28 16:00:00
cve
cve
CVE-2011-0440
2011-03-28 16:55:00
securityvulns
securityvulns
debian
debian
[SECURITY] [DSA 2206-1] New mahara packages fix several vulnerabilities
2011-03-29 22:07:25
openvas
openvas
Mahara Cross Site Scripting and Cross Site Request Forgery Vulnerabilities
2011-04-01 00:00:00
Mahara Cross Site Scripting and Cross Site Request Forgery Vulnerabilities
2011-04-01 00:00:00
Debian Security Advisory DSA 2206-1 (mahara)
2011-05-12 00:00:00
nessus
nessus
Debian DSA-2206-1 : mahara - several vulnerabilities
2011-03-30 00:00:00
osv
osv
mahara - several
2011-03-29 00:00:00
7.6 High
AI Score
Confidence
Low
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:P/A:P
0.003 Low
EPSS
Percentile
69.9%
Related for PRION:CVE-2011-0440