Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

mambo mambo 4.5 1.0.2 vulnerabilities and exploits

(subscribe to this query)
NA

CVE-2004-1826

SQL injection vulnerability in index.php in Mambo Open Source 4.5 stable 1.0.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Mambo Mambo Open Source 4.5 1.0.0Mambo Mambo Open Source 4.5 1.0.2Mambo Mambo Open Source 4.5 1.0.3betaMambo Mambo Open Source 4.5 1.0.1Mambo Mambo Open Source 4.5 1.0.3
NA

CVE-2005-4156

Unspecified vulnerability in Mambo 4.5 (1.0.0) up to and including 4.5 (1.0.9), with magic_quotes_gpc disabled, allows remote malicious users to read arbitrary files and possibly cause a denial of service via a query string that ends with a NULL character.
Mambo Mambo Open Source 4.5 1.0.0Mambo Mambo Open Source 4.5 1.0.2Mambo Mambo Open Source 4.5 1.0.1Mambo Mambo Open Source 4.5 1.0.9Mambo Mambo Open Source 4.5 1.0.3 BetaMambo Mambo Open Source 4.5 1.0.3
NA

CVE-2006-1794

SQL injection vulnerability in Mambo 4.5.3, 4.5.3h, and possibly earlier versions allows remote malicious users to execute arbitrary SQL commands via (1) the $username variable in the mosGetParam function and (2) the $task parameter in the mosMenuCheck function in (a) includes/ma...
Mambo Mambo 4.5 1.0.1Mambo Mambo 4.5.2Mambo Mambo 4.5 1.0.3 BetaMambo Mambo 4.5.2.2Mambo Mambo 4.5.1 1.0.9Mambo Mambo 4.5.2.3Mambo Mambo 4.5.1aMambo Mambo 4.5 1.0.0Mambo Mambo 4.5.3hMambo Mambo 4.5.2.1Mambo Mambo 4.0.14Mambo MamboMambo Mambo 4.5 1.0.2
NA

CVE-2006-4286

PHP remote file inclusion vulnerability in contentpublisher.php in the contentpublisher component (com_contentpublisher) for Mambo allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter. NOTE: this issue has been disputed by...
Mambo Mambo 4.6Mambo Mambo 4.5 1.0.1Mambo Mambo 4.5.2Mambo Mambo 4.5 1.0.3 BetaMambo Mambo 4.5.0.2Mambo Mambo 4.5.2.2Mambo Mambo 4.5.1 1.0.9Mambo Mambo 4.5.2.3Mambo Mambo 4.5.3hMambo Mambo 4.5.1aMambo Mambo 4.5 1.0.0Mambo Mambo 4.5.2.1Mambo Mambo 4.0.14Mambo Mambo 4.5.1.3Mambo Mambo 4.5 1.0.2Mambo Mambo 4.5 1.0.9
NA

CVE-2008-0517

SQL injection vulnerability in index.php in the Darko Selesi EstateAgent (com_estateagent) 0.1 component for Mambo 4.5.x and Joomla! allows remote malicious users to execute arbitrary SQL commands via the objid parameter in a contact showObject action.
Mambo Mambo 4.5 1.0.1Mambo Mambo 4.5.2Mambo Mambo 4.5 1.0.3 BetaMambo Mambo 4.5.0.2Mambo Mambo 4.5.2.2Mambo Mambo 4.5.1 1.0.9Mambo Mambo 4.5.2.3Mambo Mambo 4.5Mambo Mambo 4.5.1 Beta2Mambo Mambo 4.5 1.0.0Mambo Mambo 4.5.1aMambo Mambo 4.5.1 BetaMambo Mambo 4.5.3hMambo Mambo 4.5.2.1Darko Selesi Estateagent 0.1Joomla JoomlaMambo Mambo 4.5.1.3Mambo Mambo 4.5 1.0.2Mambo Mambo 4.5.4Mambo Mambo 4.5 1.0.9
NA

CVE-2008-2905

PHP remote file inclusion vulnerability in includes/Cache/Lite/Output.php in the Cache_Lite package in Mambo 4.6.4 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path paramet...
Mambo Mambo 4.5 1.0.1Mambo Mambo 4.5.2Mambo Mambo 4.5 1.0.3 BetaMambo Mambo 4.5.0.2Mambo Mambo 4.6Mambo Mambo 4.5.2.2Mambo Mambo 4.5.1 1.0.9Mambo Mambo 4.6.1Mambo Mambo 4.6.2Mambo Mambo 4.5.2.3Mambo Mambo 4.5Mambo Mambo 4.5.1 Beta2Mambo Mambo 4.5 1.0.0Mambo Mambo 4.6.4Mambo Mambo 4.5.1aMambo Mambo 4.5.1 BetaMambo Mambo 4.5.3hMambo Mambo 4.5.2.1Mambo Mambo 4.0.14Mambo Mambo 4.5.1.3Mambo Mambo 4.5 1.0.2Mambo Mambo 4.5.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusionIMAPCVE-2024-36103CVE-2024-28995CVE-2024-37325CVE-2024-30078CVE-2024-30082SQL injectionCVE-2024-30052
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook