Launchpad.net

CVE 2010-1668

Multiple cross-site request forgery (CSRF) vulnerabilities in Mahara before 1.0.15, 1.1.x before 1.1.9, and 1.2.x before 1.2.5 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors.

Related bugs and status

CVE-2010-1668 (Candidate) is related to these bugs:

Bug #602772: Sync mahara 1.2.5-1 (universe) from Debian unstable (main)

		In	Importance	Status
602772	Sync mahara 1.2.5-1 (universe) from Debian unstable (main)	mahara (Ubuntu)	Wishlist	Fix Released
602772	Sync mahara 1.2.5-1 (universe) from Debian unstable (main)	mahara (Ubuntu Jaunty)	Undecided	Fix Released
602772	Sync mahara 1.2.5-1 (universe) from Debian unstable (main)	mahara (Ubuntu Karmic)	Undecided	Fix Released
602772	Sync mahara 1.2.5-1 (universe) from Debian unstable (main)	mahara (Ubuntu Lucid)	Undecided	Fix Released
602772	Sync mahara 1.2.5-1 (universe) from Debian unstable (main)	mahara (Ubuntu Maverick)	Wishlist	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2010-1668

Related bugs and status

Related bugs

References