Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2012-2246

Mahara 1.4.x before 1.4.5 and 1.5.x before 1.5.4 allows remote attackers to conduct clickjacking attacks to delete arbitrary users and bypass CSRF protection via account/delete.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.8%
CVSS Severity
CVSS v2 Score 6.8
Products affected by CVE-2012-2246
  • Mahara » Mahara » Version: 1.4
    cpe:2.3:a:mahara:mahara:1.4
  • Mahara » Mahara » Version: 1.4.0
    cpe:2.3:a:mahara:mahara:1.4.0
  • Mahara » Mahara » Version: 1.4.1
    cpe:2.3:a:mahara:mahara:1.4.1
  • Mahara » Mahara » Version: 1.4.2
    cpe:2.3:a:mahara:mahara:1.4.2
  • Mahara » Mahara » Version: 1.4.3
    cpe:2.3:a:mahara:mahara:1.4.3
  • Mahara » Mahara » Version: 1.4.4
    cpe:2.3:a:mahara:mahara:1.4.4
  • Mahara » Mahara » Version: 1.5
    cpe:2.3:a:mahara:mahara:1.5
  • Mahara » Mahara » Version: 1.5.0
    cpe:2.3:a:mahara:mahara:1.5.0
  • Mahara » Mahara » Version: 1.5.1
    cpe:2.3:a:mahara:mahara:1.5.1
  • Mahara » Mahara » Version: 1.5.2
    cpe:2.3:a:mahara:mahara:1.5.2
  • Mahara » Mahara » Version: 1.5.3
    cpe:2.3:a:mahara:mahara:1.5.3


Contact Us

Shodan ® - All rights reserved