Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mambo mambo 4.5 vulnerabilities and exploits
(subscribe to this query)
837
VMScore
CVE-2005-4156
Unspecified vulnerability in Mambo 4.5 (1.0.0) up to and including 4.5 (1.0.9), with magic_quotes_gpc disabled, allows remote malicious users to read arbitrary files and possibly cause a denial of service via a query string that ends with a NULL character.
Mambo Mambo Open Source 4.5 1.0.1
Mambo Mambo Open Source 4.5 1.0.2
Mambo Mambo Open Source 4.5 1.0.3
Mambo Mambo Open Source 4.5 1.0.3 Beta
Mambo Mambo Open Source 4.5 1.0.0
Mambo Mambo Open Source 4.5 1.0.9
755
VMScore
CVE-2004-1826
SQL injection vulnerability in index.php in Mambo Open Source 4.5 stable 1.0.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Mambo Mambo Open Source 4.5 1.0.0
Mambo Mambo Open Source 4.5 1.0.3
Mambo Mambo Open Source 4.5 1.0.3beta
Mambo Mambo Open Source 4.5 1.0.1
Mambo Mambo Open Source 4.5 1.0.2
1 EDB exploit
755
VMScore
CVE-2008-0510
SQL injection vulnerability in index.php in the Newsletter (com_newsletter) component for Mambo 4.5 and Joomla! allows remote malicious users to execute arbitrary SQL commands via the listid parameter.
Joomla Com Newsletter
Mambo Com Newsletter
Mambo Mambo 4.5
1 EDB exploit
755
VMScore
CVE-2008-0517
SQL injection vulnerability in index.php in the Darko Selesi EstateAgent (com_estateagent) 0.1 component for Mambo 4.5.x and Joomla! allows remote malicious users to execute arbitrary SQL commands via the objid parameter in a contact showObject action.
Mambo Mambo 4.5.1 Beta
Mambo Mambo 4.5.1 Beta2
Mambo Mambo 4.5.4
Mambo Mambo 4.5 1.0.0
Darko Selesi Estateagent 0.1
Joomla Joomla
Mambo Mambo 4.5.1a
Mambo Mambo 4.5.2
Mambo Mambo 4.5 1.0.1
Mambo Mambo 4.5 1.0.2
Mambo Mambo 4.5.1.3
Mambo Mambo 4.5.1 1.0.9
Mambo Mambo 4.5.2.3
Mambo Mambo 4.5.3h
Mambo Mambo 4.5
Mambo Mambo 4.5.0.2
Mambo Mambo 4.5.2.1
Mambo Mambo 4.5.2.2
Mambo Mambo 4.5 1.0.3 Beta
Mambo Mambo 4.5 1.0.9
1 EDB exploit
695
VMScore
CVE-2008-2905
PHP remote file inclusion vulnerability in includes/Cache/Lite/Output.php in the Cache_Lite package in Mambo 4.6.4 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path paramet...
Mambo Mambo 4.5.1.3
Mambo Mambo 4.5.1 1.0.9
Mambo Mambo 4.5.3h
Mambo Mambo 4.5.4
Mambo Mambo 4.6.1
Mambo Mambo 4.6.2
Mambo Mambo 4.0.14
Mambo Mambo 4.5.1a
Mambo Mambo 4.5.2
Mambo Mambo 4.5.2.1
Mambo Mambo 4.5 1.0.2
Mambo Mambo 4.5 1.0.3 Beta
Mambo Mambo 4.5.1 Beta
Mambo Mambo 4.5.1 Beta2
Mambo Mambo 4.5 1.0.0
Mambo Mambo 4.5 1.0.1
Mambo Mambo 4.6.4
Mambo Mambo 4.5
Mambo Mambo 4.5.0.2
Mambo Mambo 4.5.2.2
Mambo Mambo 4.5.2.3
Mambo Mambo 4.5 1.0.9
3 EDB exploits
755
VMScore
CVE-2008-0795
SQL injection vulnerability in index.php in the MGFi XfaQ (com_xfaq) 1.2 component for Mambo and Joomla! allows remote malicious users to execute arbitrary SQL commands via the aid parameter in an answer action.
Mgfi Xfaq 1.2
Joomla Joomla 1.0
Mambo Mambo 4.5
1 EDB exploit
435
VMScore
CVE-2004-1825
Cross-site scripting (XSS) vulnerability in index.php in Mambo Open Source 4.5 stable 1.0.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the (1) return or (2) mos_change_template parameters.
Mambo Mambo Open Source 4.5 1.0.0
Mambo Mambo Open Source 4.5 1.0.1
1 EDB exploit
755
VMScore
CVE-2004-1693
PHP remote file inclusion vulnerability in Function.php in Mambo 4.5 (1.0.9) allows remote malicious users to execute arbitrary PHP code by modifying the mosConfig_absolute_path parameter to reference a URL on a remote web server that contains the code.
Mambo Mambo 4.5 1.0.9
1 EDB exploit
445
VMScore
CVE-2008-0261
Unspecified vulnerability in the search component and module in Mambo 4.5.x and 4.6.x allows remote malicious users to cause a denial of service (query flood) via unspecified vectors.
Mambo Mambo Open Source
685
VMScore
CVE-2006-3980
PHP remote file inclusion vulnerability in administrator/components/com_mgm/help.mgm.php in Mambo Gallery Manager (MGM) 0.95r2 and previous versions for Mambo 4.5 allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Mambo Mambo Gallery Manager
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »