Candidate: CVE-2011-2773
PublicDate: 2011-11-15 03:57:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2773
Description:
 Cross-site request forgery (CSRF) vulnerability in Mahara before 1.4.1
 allows remote attackers to hijack the authentication of administrators for
 requests that add a user to an institution.
Ubuntu-Description: 
Notes: 
Bugs: 
Priority: medium
Discovered-by: Richard Mansfield
Assigned-to: 
CVSS: 

Patches_mahara:
 vendor: http://www.debian.org/security/2011/dsa-2334
upstream_mahara: needs-triage
hardy_mahara: DNE
lucid_mahara: released (1.2.4-1ubuntu0.4)
maverick_mahara: released (1.2.5-2ubuntu0.3)
natty_mahara: released (1.2.7-1ubuntu0.2)
oneiric_mahara: released (1.4.0-1ubuntu0.1)
devel_mahara: released (1.4.1-1)