CVE-2017-1000142

Source
https://cve.org/CVERecord?id=CVE-2017-1000142
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-1000142.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2017-1000142
Published
2017-11-03T18:29:00.620Z
Modified
2026-07-08T12:42:11.969932Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N CVSS Calculator
Summary
[none]
Details

Mahara 1.8 before 1.8.7 and 1.9 before 1.9.5 and 1.10 before 1.10.3 and 15.04 before 15.04.0 are vulnerable to users being able to delete their submitted page through URL manipulation.

References

Affected packages

Git / github.com/maharaproject/mahara

Affected ranges

Type
GIT
Repo
https://github.com/maharaproject/mahara
Events
Database specific
{
    "source": "CPE_STRING",
    "cpe": [
        "cpe:2.3:a:mahara:mahara:1.8:rc1:*:*:*:*:*:*",
        "cpe:2.3:a:mahara:mahara:1.8:rc2:*:*:*:*:*:*",
        "cpe:2.3:a:mahara:mahara:1.8.0:*:*:*:*:*:*:*",
        "cpe:2.3:a:mahara:mahara:1.8.1:*:*:*:*:*:*:*",
        "cpe:2.3:a:mahara:mahara:1.8.2:*:*:*:*:*:*:*",
        "cpe:2.3:a:mahara:mahara:1.8.3:*:*:*:*:*:*:*",
        "cpe:2.3:a:mahara:mahara:1.8.4:*:*:*:*:*:*:*",
        "cpe:2.3:a:mahara:mahara:1.8.5:*:*:*:*:*:*:*",
        "cpe:2.3:a:mahara:mahara:1.8.6:*:*:*:*:*:*:*",
        "cpe:2.3:a:mahara:mahara:1.9:rc1:*:*:*:*:*:*",
        "cpe:2.3:a:mahara:mahara:1.9.0:*:*:*:*:*:*:*",
        "cpe:2.3:a:mahara:mahara:1.9.1:*:*:*:*:*:*:*",
        "cpe:2.3:a:mahara:mahara:1.9.2:*:*:*:*:*:*:*",
        "cpe:2.3:a:mahara:mahara:1.9.3:*:*:*:*:*:*:*",
        "cpe:2.3:a:mahara:mahara:1.9.4:*:*:*:*:*:*:*",
        "cpe:2.3:a:mahara:mahara:1.10:rc1:*:*:*:*:*:*",
        "cpe:2.3:a:mahara:mahara:1.10.0:*:*:*:*:*:*:*",
        "cpe:2.3:a:mahara:mahara:1.10.1:*:*:*:*:*:*:*",
        "cpe:2.3:a:mahara:mahara:1.10.2:*:*:*:*:*:*:*",
        "cpe:2.3:a:mahara:mahara:15.04:rc1:*:*:*:*:*:*",
        "cpe:2.3:a:mahara:mahara:15.04:rc2:*:*:*:*:*:*"
    ],
    "extracted_events": [
        {
            "introduced": "1.8-rc1"
        },
        {
            "last_affected": "1.8-rc1"
        },
        {
            "introduced": "1.8-rc2"
        },
        {
            "last_affected": "1.8-rc2"
        },
        {
            "introduced": "1.8.0"
        },
        {
            "last_affected": "1.8.0"
        },
        {
            "introduced": "1.8.1"
        },
        {
            "last_affected": "1.8.1"
        },
        {
            "introduced": "1.8.2"
        },
        {
            "last_affected": "1.8.2"
        },
        {
            "introduced": "1.8.3"
        },
        {
            "last_affected": "1.8.3"
        },
        {
            "introduced": "1.8.4"
        },
        {
            "last_affected": "1.8.4"
        },
        {
            "introduced": "1.8.5"
        },
        {
            "last_affected": "1.8.5"
        },
        {
            "introduced": "1.8.6"
        },
        {
            "last_affected": "1.8.6"
        },
        {
            "introduced": "1.9-rc1"
        },
        {
            "last_affected": "1.9-rc1"
        },
        {
            "introduced": "1.9.0"
        },
        {
            "last_affected": "1.9.0"
        },
        {
            "introduced": "1.9.1"
        },
        {
            "last_affected": "1.9.1"
        },
        {
            "introduced": "1.9.2"
        },
        {
            "last_affected": "1.9.2"
        },
        {
            "introduced": "1.9.3"
        },
        {
            "last_affected": "1.9.3"
        },
        {
            "introduced": "1.9.4"
        },
        {
            "last_affected": "1.9.4"
        },
        {
            "introduced": "1.10-rc1"
        },
        {
            "last_affected": "1.10-rc1"
        },
        {
            "introduced": "1.10.0"
        },
        {
            "last_affected": "1.10.0"
        },
        {
            "introduced": "1.10.1"
        },
        {
            "last_affected": "1.10.1"
        },
        {
            "introduced": "1.10.2"
        },
        {
            "last_affected": "1.10.2"
        },
        {
            "introduced": "15.04-rc1"
        },
        {
            "last_affected": "15.04-rc1"
        },
        {
            "introduced": "15.04-rc2"
        },
        {
            "last_affected": "15.04-rc2"
        }
    ]
}

Affected versions

1.*
1.10-rc1
1.10.0
1.10.1
1.10.2
1.8-rc1
1.8-rc2
1.8.0
1.8.1
1.8.2
1.8.3
1.8.4
1.8.5
1.8.6
1.8RC1_RELEASE
1.8RC2_RELEASE
1.9-rc1
1.9.0
1.9.1
1.9.2
1.9.3
1.9.4
15.*
15.04-rc1
15.04-rc2
15.04RC1_RELEASE
15.04RC2_RELEASE

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-1000142.json"