Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mambo mambo 4.5 vulnerabilities and exploits
(subscribe to this query)
9.4
CVSSv2
CVE-2005-4156
Unspecified vulnerability in Mambo 4.5 (1.0.0) up to and including 4.5 (1.0.9), with magic_quotes_gpc disabled, allows remote malicious users to read arbitrary files and possibly cause a denial of service via a query string that ends with a NULL character.
Mambo Mambo Open Source 4.5 1.0.1
Mambo Mambo Open Source 4.5 1.0.2
Mambo Mambo Open Source 4.5 1.0.3
Mambo Mambo Open Source 4.5 1.0.3 Beta
Mambo Mambo Open Source 4.5 1.0.0
Mambo Mambo Open Source 4.5 1.0.9
7.5
CVSSv2
CVE-2004-1826
SQL injection vulnerability in index.php in Mambo Open Source 4.5 stable 1.0.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Mambo Mambo Open Source 4.5 1.0.0
Mambo Mambo Open Source 4.5 1.0.3
Mambo Mambo Open Source 4.5 1.0.3beta
Mambo Mambo Open Source 4.5 1.0.1
Mambo Mambo Open Source 4.5 1.0.2
1 EDB exploit
7.5
CVSSv2
CVE-2008-0510
SQL injection vulnerability in index.php in the Newsletter (com_newsletter) component for Mambo 4.5 and Joomla! allows remote malicious users to execute arbitrary SQL commands via the listid parameter.
Joomla Com Newsletter
Mambo Com Newsletter
Mambo Mambo 4.5
1 EDB exploit
7.5
CVSSv2
CVE-2008-0517
SQL injection vulnerability in index.php in the Darko Selesi EstateAgent (com_estateagent) 0.1 component for Mambo 4.5.x and Joomla! allows remote malicious users to execute arbitrary SQL commands via the objid parameter in a contact showObject action.
Mambo Mambo 4.5.1 Beta
Mambo Mambo 4.5.1 Beta2
Mambo Mambo 4.5.4
Mambo Mambo 4.5 1.0.0
Darko Selesi Estateagent 0.1
Joomla Joomla
Mambo Mambo 4.5.1a
Mambo Mambo 4.5.2
Mambo Mambo 4.5 1.0.1
Mambo Mambo 4.5 1.0.2
Mambo Mambo 4.5.1.3
Mambo Mambo 4.5.1 1.0.9
Mambo Mambo 4.5.2.3
Mambo Mambo 4.5.3h
Mambo Mambo 4.5
Mambo Mambo 4.5.0.2
Mambo Mambo 4.5.2.1
Mambo Mambo 4.5.2.2
Mambo Mambo 4.5 1.0.3 Beta
Mambo Mambo 4.5 1.0.9
1 EDB exploit
6.8
CVSSv2
CVE-2008-2905
PHP remote file inclusion vulnerability in includes/Cache/Lite/Output.php in the Cache_Lite package in Mambo 4.6.4 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path paramet...
Mambo Mambo 4.5.1.3
Mambo Mambo 4.5.1 1.0.9
Mambo Mambo 4.5.3h
Mambo Mambo 4.5.4
Mambo Mambo 4.6.1
Mambo Mambo 4.6.2
Mambo Mambo 4.0.14
Mambo Mambo 4.5.1a
Mambo Mambo 4.5.2
Mambo Mambo 4.5.2.1
Mambo Mambo 4.5 1.0.2
Mambo Mambo 4.5 1.0.3 Beta
Mambo Mambo 4.5.1 Beta
Mambo Mambo 4.5.1 Beta2
Mambo Mambo 4.5 1.0.0
Mambo Mambo 4.5 1.0.1
Mambo Mambo 4.6.4
Mambo Mambo 4.5
Mambo Mambo 4.5.0.2
Mambo Mambo 4.5.2.2
Mambo Mambo 4.5.2.3
Mambo Mambo 4.5 1.0.9
3 EDB exploits
7.5
CVSSv2
CVE-2008-0795
SQL injection vulnerability in index.php in the MGFi XfaQ (com_xfaq) 1.2 component for Mambo and Joomla! allows remote malicious users to execute arbitrary SQL commands via the aid parameter in an answer action.
Mgfi Xfaq 1.2
Joomla Joomla 1.0
Mambo Mambo 4.5
1 EDB exploit
4.3
CVSSv2
CVE-2004-1825
Cross-site scripting (XSS) vulnerability in index.php in Mambo Open Source 4.5 stable 1.0.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the (1) return or (2) mos_change_template parameters.
Mambo Mambo Open Source 4.5 1.0.0
Mambo Mambo Open Source 4.5 1.0.1
1 EDB exploit
7.5
CVSSv2
CVE-2004-1693
PHP remote file inclusion vulnerability in Function.php in Mambo 4.5 (1.0.9) allows remote malicious users to execute arbitrary PHP code by modifying the mosConfig_absolute_path parameter to reference a URL on a remote web server that contains the code.
Mambo Mambo 4.5 1.0.9
1 EDB exploit
5
CVSSv2
CVE-2008-0261
Unspecified vulnerability in the search component and module in Mambo 4.5.x and 4.6.x allows remote malicious users to cause a denial of service (query flood) via unspecified vectors.
Mambo Mambo Open Source
6.8
CVSSv2
CVE-2006-3980
PHP remote file inclusion vulnerability in administrator/components/com_mgm/help.mgm.php in Mambo Gallery Manager (MGM) 0.95r2 and previous versions for Mambo 4.5 allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Mambo Mambo Gallery Manager
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »