{"id":"CVE-2017-1000142","details":"Mahara 1.8 before 1.8.7 and 1.9 before 1.9.5 and 1.10 before 1.10.3 and 15.04 before 15.04.0 are vulnerable to users being able to delete their submitted page through URL manipulation.","modified":"2026-07-08T12:42:11.969932Z","published":"2017-11-03T18:29:00.620Z","references":[{"type":"FIX","url":"https://bugs.launchpad.net/mahara/+bug/1425306"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/maharaproject/mahara","events":[{"introduced":"c97ba68462a8fad83036d1b896a1e412729604ee"},{"last_affected":"39ac3f76ea3981e204aca4f25a6d60bd988094f0"}],"database_specific":{"cpe":["cpe:2.3:a:mahara:mahara:1.8:rc1:*:*:*:*:*:*","cpe:2.3:a:mahara:mahara:1.8:rc2:*:*:*:*:*:*","cpe:2.3:a:mahara:mahara:1.8.0:*:*:*:*:*:*:*","cpe:2.3:a:mahara:mahara:1.8.1:*:*:*:*:*:*:*","cpe:2.3:a:mahara:mahara:1.8.2:*:*:*:*:*:*:*","cpe:2.3:a:mahara:mahara:1.8.3:*:*:*:*:*:*:*","cpe:2.3:a:mahara:mahara:1.8.4:*:*:*:*:*:*:*","cpe:2.3:a:mahara:mahara:1.8.5:*:*:*:*:*:*:*","cpe:2.3:a:mahara:mahara:1.8.6:*:*:*:*:*:*:*","cpe:2.3:a:mahara:mahara:1.9:rc1:*:*:*:*:*:*","cpe:2.3:a:mahara:mahara:1.9.0:*:*:*:*:*:*:*","cpe:2.3:a:mahara:mahara:1.9.1:*:*:*:*:*:*:*","cpe:2.3:a:mahara:mahara:1.9.2:*:*:*:*:*:*:*","cpe:2.3:a:mahara:mahara:1.9.3:*:*:*:*:*:*:*","cpe:2.3:a:mahara:mahara:1.9.4:*:*:*:*:*:*:*","cpe:2.3:a:mahara:mahara:1.10:rc1:*:*:*:*:*:*","cpe:2.3:a:mahara:mahara:1.10.0:*:*:*:*:*:*:*","cpe:2.3:a:mahara:mahara:1.10.1:*:*:*:*:*:*:*","cpe:2.3:a:mahara:mahara:1.10.2:*:*:*:*:*:*:*","cpe:2.3:a:mahara:mahara:15.04:rc1:*:*:*:*:*:*","cpe:2.3:a:mahara:mahara:15.04:rc2:*:*:*:*:*:*"],"extracted_events":[{"introduced":"1.8-rc1"},{"last_affected":"1.8-rc1"},{"introduced":"1.8-rc2"},{"last_affected":"1.8-rc2"},{"introduced":"1.8.0"},{"last_affected":"1.8.0"},{"introduced":"1.8.1"},{"last_affected":"1.8.1"},{"introduced":"1.8.2"},{"last_affected":"1.8.2"},{"introduced":"1.8.3"},{"last_affected":"1.8.3"},{"introduced":"1.8.4"},{"last_affected":"1.8.4"},{"introduced":"1.8.5"},{"last_affected":"1.8.5"},{"introduced":"1.8.6"},{"last_affected":"1.8.6"},{"introduced":"1.9-rc1"},{"last_affected":"1.9-rc1"},{"introduced":"1.9.0"},{"last_affected":"1.9.0"},{"introduced":"1.9.1"},{"last_affected":"1.9.1"},{"introduced":"1.9.2"},{"last_affected":"1.9.2"},{"introduced":"1.9.3"},{"last_affected":"1.9.3"},{"introduced":"1.9.4"},{"last_affected":"1.9.4"},{"introduced":"1.10-rc1"},{"last_affected":"1.10-rc1"},{"introduced":"1.10.0"},{"last_affected":"1.10.0"},{"introduced":"1.10.1"},{"last_affected":"1.10.1"},{"introduced":"1.10.2"},{"last_affected":"1.10.2"},{"introduced":"15.04-rc1"},{"last_affected":"15.04-rc1"},{"introduced":"15.04-rc2"},{"last_affected":"15.04-rc2"}],"source":"CPE_STRING"}}],"versions":["1.10-rc1","1.10.0","1.10.1","1.10.2","1.8-rc1","1.8-rc2","1.8.0","1.8.1","1.8.2","1.8.3","1.8.4","1.8.5","1.8.6","1.9-rc1","1.9.0","1.9.1","1.9.2","1.9.3","1.9.4","15.04-rc1","15.04-rc2","15.04RC2_RELEASE","15.04RC1_RELEASE","1.8RC2_RELEASE","1.8RC1_RELEASE"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-1000142.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"}]}