Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mambo mambo 4.6.2 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-3712
Multiple cross-site scripting (XSS) vulnerabilities in Mambo 4.6.2 and 4.6.5, when register_globals is enabled, allow remote malicious users to inject arbitrary web script or HTML via the (1) query string to mambots/editors/mostlyce/jscripts/tiny_mce/filemanager/connectors/php/co...
Mambo Mambo 4.6.2
Mambo Mambo 4.6.5
2 EDB exploits
NA
CVE-2007-6455
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Mambo 4.6.2 allow remote malicious users to inject arbitrary web script or HTML via the (1) Itemid parameter in a com_frontpage option and the (2) option parameter.
Mambo Mambo 4.6.2
1 EDB exploit
NA
CVE-2008-7212
MOStlyCE prior to 2.4, as used in Mambo 4.6.3 and previous versions, allows remote malicious users to obtain sensitive information via certain requests to mambots/editors/mostlyce/jscripts/tiny_mce/filemanager/connectors/php/connector.php, which reveals the installation path in a...
Mambo-foundation Mambo
Mambo-foundation Mambo 4.6.2
Brilaps Mostlyce
NA
CVE-2008-7213
Cross-site scripting (XSS) vulnerability in mambots/editors/mostlyce/jscripts/tiny_mce/filemanager/connectors/php/connector.php in MOStlyCE prior to 2.4, as used in Mambo 4.6.3 and previous versions, allows remote malicious users to inject arbitrary web script or HTML via the Com...
Mambo-foundation Mambo
Mambo-foundation Mambo 4.6.2
Brilaps Mostlyce
1 EDB exploit
NA
CVE-2008-7214
Cross-site request forgery (CSRF) vulnerability in administrator/index2.php in MOStlyCE prior to 2.4, as used in Mambo 4.6.3 and previous versions, allows remote malicious users to hijack the authentication of administrators for requests that add new administrator accounts via th...
Mambo-foundation Mambo
Mambo-foundation Mambo 4.6.2
Brilaps Mostlyce
NA
CVE-2008-7215
The Image Manager in MOStlyCE prior to 2.4, as used in Mambo 4.6.3 and previous versions, allows remote malicious users to rename arbitrary files and cause a denial of service via modified file[NewFile][name], file[NewFile][tmp_name], and file[NewFile][size] parameters in a FileU...
Mambo-foundation Mambo
Mambo-foundation Mambo 4.6.2
Brilaps Mostlyce
NA
CVE-2011-2917
SQL injection vulnerability in administrator/index2.php in Mambo CMS 4.6.5 and previous versions allows remote malicious users to execute arbitrary SQL commands via the zorder parameter.
Mambo-foundation Mambo 4.6.4
Mambo-foundation Mambo 4.6.2
Mambo-foundation Mambo 4.6.1
Mambo-foundation Mambo 4.6
Mambo-foundation Mambo
Mambo-foundation Mambo 4.6.3
1 EDB exploit
NA
CVE-2007-4203
Session fixation vulnerability in Mambo 4.6.2 CMS allows remote malicious users to hijack web sessions by setting the Cookie parameter.
Mambo Mambo Open Source 4.6.2
NA
CVE-2008-2905
PHP remote file inclusion vulnerability in includes/Cache/Lite/Output.php in the Cache_Lite package in Mambo 4.6.4 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path paramet...
Mambo Mambo 4.5.1.3
Mambo Mambo 4.5.1 1.0.9
Mambo Mambo 4.5.3h
Mambo Mambo 4.5.4
Mambo Mambo 4.6.1
Mambo Mambo 4.6.2
Mambo Mambo 4.0.14
Mambo Mambo 4.5.1a
Mambo Mambo 4.5.2
Mambo Mambo 4.5.2.1
Mambo Mambo 4.5 1.0.2
Mambo Mambo 4.5 1.0.3 Beta
Mambo Mambo 4.5.1 Beta
Mambo Mambo 4.5.1 Beta2
Mambo Mambo 4.5 1.0.0
Mambo Mambo 4.5 1.0.1
Mambo Mambo 4.6.4
Mambo Mambo 4.5
Mambo Mambo 4.5.0.2
Mambo Mambo 4.5.2.2
Mambo Mambo 4.5.2.3
Mambo Mambo 4.5 1.0.9
3 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started