Unrated severityNVD Advisory· Published Nov 15, 2011· Updated Jun 16, 2026
CVE-2011-2774
CVE-2011-2774
Description
The "Reply to message" feature in Mahara 1.3.x and 1.4.x before 1.4.1 allows remote authenticated users to read the messages of a different user via a modified replyto parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
19cpe:2.3:a:mahara:mahara:1.3.0:*:*:*:*:*:*:*+ 18 more
- cpe:2.3:a:mahara:mahara:1.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:mahara:mahara:1.3.0:beta1:*:*:*:*:*:*
- cpe:2.3:a:mahara:mahara:1.3.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:mahara:mahara:1.3.0:beta3:*:*:*:*:*:*
- cpe:2.3:a:mahara:mahara:1.3.0:beta4:*:*:*:*:*:*
- cpe:2.3:a:mahara:mahara:1.3.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:mahara:mahara:1.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:mahara:mahara:1.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:mahara:mahara:1.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:mahara:mahara:1.3.4:*:*:*:*:*:*:*
- cpe:2.3:a:mahara:mahara:1.3.5:*:*:*:*:*:*:*
- cpe:2.3:a:mahara:mahara:1.3.6:*:*:*:*:*:*:*
- cpe:2.3:a:mahara:mahara:1.3.7:*:*:*:*:*:*:*
- cpe:2.3:a:mahara:mahara:1.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:mahara:mahara:1.4:rc1:*:*:*:*:*:*
- cpe:2.3:a:mahara:mahara:1.4:rc2:*:*:*:*:*:*
- cpe:2.3:a:mahara:mahara:1.4:rc3:*:*:*:*:*:*
- cpe:2.3:a:mahara:mahara:1.4:rc4:*:*:*:*:*:*
- (no CPE)range: 1.3.x, 1.4.x before 1.4.1
Patches
Vulnerability mechanics
References
3- launchpad.net/bugs/798128nvdPatch
- launchpad.net/mahara/+milestone/1.4.1nvdPatch
- secunia.com/advisories/46719nvdVendor Advisory
News mentions
0No linked articles in our index yet.