Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mambo mambo vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2006-4203
PHP remote file inclusion vulnerability in help.mmp.php in the MMP Component (com_mmp) 1.2 and previous versions for Mambo allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Mamboxchange Mambo Email Publisher
1 EDB exploit
668
VMScore
CVE-2006-4264
Multiple PHP remote file inclusion vulnerabilities in the lmtg_myhomepage Component (com_lmtg_myhomepage) for Mambo allow remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter in (1) install.lmtg_homepage.php and (2) mtg_homepage....
Mambo Mtg Myhomepage Component
668
VMScore
CVE-2006-4375
PHP remote file inclusion vulnerability in contxtd.class.php in the Contacts XTD (ContXTD) component for Mambo (com_contxtd) allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter. NOTE: another researcher has disputed this ...
Mambo Contacts Xtd Component
505
VMScore
CVE-2002-2288
Mambo Site Server 4.0.11 allows remote malicious users to obtain the physical path of the server via an HTTP request to index.php with a parameter that does not exist, which causes the path to be leaked in an error message.
Mambo Site Server 4.0.11
1 EDB exploit
515
VMScore
CVE-2006-3294
PHP remote file inclusion vulnerability in mod_cbsms_messages.php in CBSMS Mambo Module 1.0 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Cbsms Mambo Module 1.0
1 EDB exploit
685
VMScore
CVE-2006-4288
PHP remote file inclusion vulnerability in admin.a6mambocredits.php in the a6mambocredits component (com_a6mambocredits) 2.0.0 and previous versions for Mambo allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_live_site parameter. NOTE: some of...
Mambo A6mambocredits Component 2.0.0
1 EDB exploit
685
VMScore
CVE-2006-4130
PHP remote file inclusion vulnerability in admin.remository.php in the Remository Component (com_remository) 3.25 and previous versions for Mambo and Joomla!, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_...
Matt Smith Remository For Mambo
1 EDB exploit
755
VMScore
CVE-2008-0846
SQL injection vulnerability in index.php in the com_profile component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the oid parameter.
Joomla Com Profile
Mambo Com Profile
1 EDB exploit
755
VMScore
CVE-2008-0853
SQL injection vulnerability in the com_detail component for Joomla! and Mambo allows remote malicious users to execute arbitrary SQL commands via the id parameter to index.php. NOTE: this issue might be site-specific. If so, it should not be included in CVE.
Joomla Com Detail
Mambo Com Detail
1 EDB exploit
755
VMScore
CVE-2008-0854
SQL injection vulnerability in the com_salesrep component for Joomla! and Mambo allows remote malicious users to execute arbitrary SQL commands via the rid parameter in a showrep action to index.php.
Mambo Com Salesrep
Joomla Com Salesrep
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-6280
CVE-2024-5346
CVE-2024-30078
CVE-2022-45803
CVE-2024-36886
SQL
CVE-2024-24553
IMAP
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »