Cross-site request forgery (CSRF) vulnerability in Mahara 1.2.x before 1.2.7 and 1.3.x before 1.3.4 allows remote attackers to hijack the authentication of arbitrary users for requests that delete blogs.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
No history.
Information
Published : 2011-03-28 16:55
Updated : 2024-02-28 11:41
NVD link : CVE-2011-0440
Mitre link : CVE-2011-0440
CVE.ORG link : CVE-2011-0440
JSON object : View
Products Affected
mahara
- mahara
CWE
CWE-352
Cross-Site Request Forgery (CSRF)