CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-1406

Mahara before 1.3.6 does not properly handle an https URL in the wwwroot configuration setting, which makes it easier for user-assisted remote attackers to obtain credentials by sniffing the network at a time when an http URL is used for a login.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 50.8%

CVSS Severity

CVSS v2 Score 4.3

References

Products affected by CVE-2011-1406

Mahara » Mahara » Version: N/A

cpe:2.3:a:mahara:mahara:-
Mahara » Mahara » Version: 0.9.0

cpe:2.3:a:mahara:mahara:0.9.0
Mahara » Mahara » Version: 0.9.1

cpe:2.3:a:mahara:mahara:0.9.1
Mahara » Mahara » Version: 0.9.2

cpe:2.3:a:mahara:mahara:0.9.2
Mahara » Mahara » Version: 1.0.0

cpe:2.3:a:mahara:mahara:1.0.0
Mahara » Mahara » Version: 1.0.1

cpe:2.3:a:mahara:mahara:1.0.1
Mahara » Mahara » Version: 1.0.10

cpe:2.3:a:mahara:mahara:1.0.10
Mahara » Mahara » Version: 1.0.11

cpe:2.3:a:mahara:mahara:1.0.11
Mahara » Mahara » Version: 1.0.12

cpe:2.3:a:mahara:mahara:1.0.12
Mahara » Mahara » Version: 1.0.13

cpe:2.3:a:mahara:mahara:1.0.13
Mahara » Mahara » Version: 1.0.14

cpe:2.3:a:mahara:mahara:1.0.14
Mahara » Mahara » Version: 1.0.15

cpe:2.3:a:mahara:mahara:1.0.15
Mahara » Mahara » Version: 1.0.2

cpe:2.3:a:mahara:mahara:1.0.2
Mahara » Mahara » Version: 1.0.3

cpe:2.3:a:mahara:mahara:1.0.3
Mahara » Mahara » Version: 1.0.4

cpe:2.3:a:mahara:mahara:1.0.4
Mahara » Mahara » Version: 1.0.5

cpe:2.3:a:mahara:mahara:1.0.5
Mahara » Mahara » Version: 1.0.6

cpe:2.3:a:mahara:mahara:1.0.6
Mahara » Mahara » Version: 1.0.7

cpe:2.3:a:mahara:mahara:1.0.7
Mahara » Mahara » Version: 1.0.8

cpe:2.3:a:mahara:mahara:1.0.8
Mahara » Mahara » Version: 1.0.9

cpe:2.3:a:mahara:mahara:1.0.9
Mahara » Mahara » Version: 1.1

cpe:2.3:a:mahara:mahara:1.1
Mahara » Mahara » Version: 1.1.0

cpe:2.3:a:mahara:mahara:1.1.0
Mahara » Mahara » Version: 1.1.1

cpe:2.3:a:mahara:mahara:1.1.1
Mahara » Mahara » Version: 1.1.2

cpe:2.3:a:mahara:mahara:1.1.2
Mahara » Mahara » Version: 1.1.3

cpe:2.3:a:mahara:mahara:1.1.3
Mahara » Mahara » Version: 1.1.4

cpe:2.3:a:mahara:mahara:1.1.4
Mahara » Mahara » Version: 1.1.5

cpe:2.3:a:mahara:mahara:1.1.5
Mahara » Mahara » Version: 1.1.6

cpe:2.3:a:mahara:mahara:1.1.6
Mahara » Mahara » Version: 1.1.7

cpe:2.3:a:mahara:mahara:1.1.7
Mahara » Mahara » Version: 1.1.8

cpe:2.3:a:mahara:mahara:1.1.8
Mahara » Mahara » Version: 1.1.9

cpe:2.3:a:mahara:mahara:1.1.9
Mahara » Mahara » Version: 1.2.0

cpe:2.3:a:mahara:mahara:1.2.0
Mahara » Mahara » Version: 1.2.1

cpe:2.3:a:mahara:mahara:1.2.1
Mahara » Mahara » Version: 1.2.2

cpe:2.3:a:mahara:mahara:1.2.2
Mahara » Mahara » Version: 1.2.3

cpe:2.3:a:mahara:mahara:1.2.3
Mahara » Mahara » Version: 1.2.4

cpe:2.3:a:mahara:mahara:1.2.4
Mahara » Mahara » Version: 1.2.5

cpe:2.3:a:mahara:mahara:1.2.5
Mahara » Mahara » Version: 1.2.6

cpe:2.3:a:mahara:mahara:1.2.6
Mahara » Mahara » Version: 1.2.7

cpe:2.3:a:mahara:mahara:1.2.7
Mahara » Mahara » Version: 1.2.8

cpe:2.3:a:mahara:mahara:1.2.8
Mahara » Mahara » Version: 1.2.9

cpe:2.3:a:mahara:mahara:1.2.9
Mahara » Mahara » Version: 1.3.0

cpe:2.3:a:mahara:mahara:1.3.0
Mahara » Mahara » Version: 1.3.1

cpe:2.3:a:mahara:mahara:1.3.1
Mahara » Mahara » Version: 1.3.2

cpe:2.3:a:mahara:mahara:1.3.2
Mahara » Mahara » Version: 1.3.3

cpe:2.3:a:mahara:mahara:1.3.3
Mahara » Mahara » Version: 1.3.4

cpe:2.3:a:mahara:mahara:1.3.4
Mahara » Mahara » Version: 1.3.5

cpe:2.3:a:mahara:mahara:1.3.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-1406

Products

Pricing

Contact Us