Cross-site request forgery (CSRF) vulnerability in the pieforms implementation in Mahara prior to 1.3.6 allows remote malicious users to hijack the authentication of arbitrary users for requests to any form, related to inappropriate regeneration of session keys.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
mahara mahara 1.0.6 |
||
mahara mahara 1.1.1 |
||
mahara mahara 1.0.0 |
||
mahara mahara 1.0.4 |
||
mahara mahara 1.0.10 |
||
mahara mahara 1.3.1 |
||
mahara mahara 1.3.0 |
||
mahara mahara 1.1.0 |
||
mahara mahara 1.1.6 |
||
mahara mahara 1.1.5 |
||
mahara mahara 1.2.0 |
||
mahara mahara 1.0.14 |
||
mahara mahara 1.2.1 |
||
mahara mahara 0.9.0 |
||
mahara mahara 1.2.3 |
||
mahara mahara 1.2.5 |
||
mahara mahara 1.0.8 |
||
mahara mahara 1.0.7 |
||
mahara mahara 1.0.1 |
||
mahara mahara 0.9.2 |
||
mahara mahara 1.2.6 |
||
mahara mahara 1.1.4 |
||
mahara mahara 1.1 |
||
mahara mahara 1.1.8 |
||
mahara mahara 1.0.5 |
||
mahara mahara 1.0.3 |
||
mahara mahara 0.9.1 |
||
mahara mahara 1.3.2 |
||
mahara mahara 1.0.11 |
||
mahara mahara 1.1.9 |
||
mahara mahara 1.0.15 |
||
mahara mahara 1.1.7 |
||
mahara mahara 1.3.3 |
||
mahara mahara 1.2.2 |
||
mahara mahara 1.3.4 |
||
mahara mahara |
||
mahara mahara 1.0.9 |
||
mahara mahara 1.1.2 |
||
mahara mahara 1.0.2 |
||
mahara mahara 1.0.12 |
||
mahara mahara 1.0.13 |
||
mahara mahara 1.1.3 |
||
mahara mahara 1.2.4 |
Vulmon