Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mambo mambo 4.6 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2006-7149
Multiple cross-site scripting (XSS) vulnerabilities in Mambo 4.6.x allow remote malicious users to inject arbitrary web script or HTML via (1) the query string to (a) index.php, which reflects the string in an error message from mod_login.php; and the (2) mcname parameter to (b) ...
Mambo Mambo 4.6
Mambo Mambo 4.6.1
755
VMScore
CVE-2011-2917
SQL injection vulnerability in administrator/index2.php in Mambo CMS 4.6.5 and previous versions allows remote malicious users to execute arbitrary SQL commands via the zorder parameter.
Mambo-foundation Mambo 4.6.4
Mambo-foundation Mambo 4.6.2
Mambo-foundation Mambo 4.6.1
Mambo-foundation Mambo 4.6
Mambo-foundation Mambo
Mambo-foundation Mambo 4.6.3
1 EDB exploit
668
VMScore
CVE-2006-7150
Multiple SQL injection vulnerabilities in Mambo 4.6.x allow remote malicious users to execute arbitrary SQL commands via the mcname parameter to (1) moscomment.php and (2) com_comment.php.
Mambo Mambo Open Source 4.6
Mambo Mambo Open Source 4.6.1
685
VMScore
CVE-2004-2072
Cross-site scripting (XSS) vulnerability in index.php for Mambo Open Source 4.6, and possibly earlier versions, allows remote malicious users to execute script on other clients via the Itemid parameter.
Mambo Mambo Open Source 4.6
1 EDB exploit
668
VMScore
CVE-2006-4286
PHP remote file inclusion vulnerability in contentpublisher.php in the contentpublisher component (com_contentpublisher) for Mambo allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter. NOTE: this issue has been disputed by...
Mambo Mambo 4.6
Mambo Mambo 4.5 1.0.1
Mambo Mambo 4.5.2
Mambo Mambo 4.5 1.0.3 Beta
Mambo Mambo 4.5.0.2
Mambo Mambo 4.5.2.2
Mambo Mambo 4.5.1 1.0.9
Mambo Mambo 4.5.2.3
Mambo Mambo 4.5.3h
Mambo Mambo 4.5.1a
Mambo Mambo 4.5 1.0.0
Mambo Mambo 4.5.2.1
Mambo Mambo 4.0.14
Mambo Mambo 4.5.1.3
Mambo Mambo 4.5 1.0.2
Mambo Mambo 4.5 1.0.9
695
VMScore
CVE-2008-2905
PHP remote file inclusion vulnerability in includes/Cache/Lite/Output.php in the Cache_Lite package in Mambo 4.6.4 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path paramet...
Mambo Mambo 4.5.1.3
Mambo Mambo 4.5.1 1.0.9
Mambo Mambo 4.5.3h
Mambo Mambo 4.5.4
Mambo Mambo 4.6.1
Mambo Mambo 4.6.2
Mambo Mambo 4.0.14
Mambo Mambo 4.5.1a
Mambo Mambo 4.5.2
Mambo Mambo 4.5.2.1
Mambo Mambo 4.5 1.0.2
Mambo Mambo 4.5 1.0.3 Beta
Mambo Mambo 4.5.1 Beta
Mambo Mambo 4.5.1 Beta2
Mambo Mambo 4.5 1.0.0
Mambo Mambo 4.5 1.0.1
Mambo Mambo 4.6.4
Mambo Mambo 4.5
Mambo Mambo 4.5.0.2
Mambo Mambo 4.5.2.2
Mambo Mambo 4.5.2.3
Mambo Mambo 4.5 1.0.9
3 EDB exploits
445
VMScore
CVE-2008-0261
Unspecified vulnerability in the search component and module in Mambo 4.5.x and 4.6.x allows remote malicious users to cause a denial of service (query flood) via unspecified vectors.
Mambo Mambo Open Source
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started