Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mambo vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-0652
SQL injection vulnerability in index.php in the Downloads (com_downloads) component for Mambo and Joomla! allows remote malicious users to execute arbitrary SQL commands via the filecatid parameter in a selectfolder action.
Mambo Com Downloads
Joomla Com Downloads
1 EDB exploit
7.5
CVSSv2
CVE-2008-0849
SQL injection vulnerability in index.php in the Downloads (com_downloads) component for Mambo and Joomla! allows remote malicious users to execute arbitrary SQL commands via the cat parameter in a selectcat function, a different vector than CVE-2008-0652.
Joomla Com Downloads
Mambo Com Downloads
7.5
CVSSv2
CVE-2008-0853
SQL injection vulnerability in the com_detail component for Joomla! and Mambo allows remote malicious users to execute arbitrary SQL commands via the id parameter to index.php. NOTE: this issue might be site-specific. If so, it should not be included in CVE.
Joomla Com Detail
Mambo Com Detail
1 EDB exploit
7.5
CVSSv2
CVE-2008-0854
SQL injection vulnerability in the com_salesrep component for Joomla! and Mambo allows remote malicious users to execute arbitrary SQL commands via the rid parameter in a showrep action to index.php.
Joomla Com Salesrep
Mambo Com Salesrep
1 EDB exploit
7.5
CVSSv2
CVE-2008-0855
SQL injection vulnerability in the Facile Forms (com_facileforms) component for Joomla! and Mambo allows remote malicious users to execute arbitrary SQL commands via the catid parameter to index.php.
Joomla Com Facileforms
Mambo Com Facileforms
1 EDB exploit
7.5
CVSSv2
CVE-2008-1540
SQL injection vulnerability in the Datsogallery (com_datsogallery) 1.3.1 module for Joomla! and Mambo allows remote malicious users to execute arbitrary SQL commands via the id parameter in a detail action to index.php. NOTE: the provenance of this information is unknown; the det...
Mambo Datsogallery 1.3.1
Joomla Datsogallery 1.3.1
1 EDB exploit
6.8
CVSSv2
CVE-2006-2815
Multiple cross-site scripting (XSS) vulnerabilities in Two Shoes M-Factory (TSMF) SimpleBoard 1.1.0 Stable (aka com_simpleboard), as used in Mambo and Joomla!, allow remote malicious users to inject arbitrary web script or HTML via (1) the Name field in "post ne topic" ...
Two Shoes Mambo Factory Simpleboard 1.1.0 Stable
7.5
CVSSv2
CVE-2008-0511
SQL injection vulnerability in index.php in the MaMML (com_mamml) component for Mambo and Joomla! allows remote malicious users to execute arbitrary SQL commands via the listid parameter.
Joomla Com Mamml
Mambo Com Mamml
1 EDB exploit
7.5
CVSSv2
CVE-2008-0514
SQL injection vulnerability in index.php in the Glossary (com_glossary) 2.0 component for Mambo and Joomla! allows remote malicious users to execute arbitrary SQL commands via the catid parameter in a display action.
Joomla Glossary 2.0
Mambo Glossary 2.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-0515
SQL injection vulnerability in index.php in the musepoes (com_musepoes) component for Mambo and Joomla! allows remote malicious users to execute arbitrary SQL commands via the aid parameter in an answer action.
Joomla Musepoes Component
Mambo Musepoes Component
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »