Unrated severityNVD Advisory· Published Jun 23, 2009· Updated Jun 16, 2026
CVE-2009-2171
CVE-2009-2171
Description
Mahara 1.1 before 1.1.5 does not apply permission checks when saving a view that contains artefacts, which allows remote authenticated users to read another user's artefact.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:mahara:mahara:1.1:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:mahara:mahara:1.1:*:*:*:*:*:*:*
- cpe:2.3:a:mahara:mahara:1.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:mahara:mahara:1.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:mahara:mahara:1.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:mahara:mahara:1.1.4:*:*:*:*:*:*:*
- (no CPE)range: >=1.1, <1.1.5
Patches
Vulnerability mechanics
References
1- mahara.org/interaction/forum/topic.phpnvdVendor Advisory
News mentions
0No linked articles in our index yet.