Mahara Admin Password Reset Security Bypass Vulnerability

Bugtraq ID: 36893
Class: Access Validation Error
CVE: CVE-2009-3298
Remote: Yes
Local: No
Published: Nov 30 2009 12:00AM
Updated: Nov 02 2009 10:27PM
Credit: Ruslan Kabalin
Vulnerable: Mahara Mahara 1.1.6
Mahara Mahara 1.1.5
Mahara Mahara 1.1.4
Mahara Mahara 1.1.3
Mahara Mahara 1.1.2
Mahara Mahara 1.1.1
Mahara Mahara 1.0.12
Mahara Mahara 1.0.11
Mahara Mahara 1.0.10
Mahara Mahara 1.0.9
Mahara Mahara 1.0.8
Mahara Mahara 1.0.6
Mahara Mahara 1.0.5
Mahara Mahara 1.0.4
Mahara Mahara 1.0.3
Mahara Mahara 1.0.2
Mahara Mahara 1.0.1
Not Vulnerable: Mahara Mahara 1.1.7
Mahara Mahara 1.0.13


 

Privacy Statement
Copyright 2010, SecurityFocus