Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mambo mambo 4.5.2 vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2005-3586
content.php in Mambo 4.5.2 up to and including 4.5.2.3 allows remote malicious users to obtain the installation path of the application via a URL that causes the application to return an error.
Mambo Mambo 4.5.2
Mambo Mambo 4.5.2.2
Mambo Mambo 4.5.2.3
Mambo Mambo 4.5.2.1
755
VMScore
CVE-2005-2002
SQL injection vulnerability in content.php in Mambo 4.5.2.2 and previous versions allows remote malicious users to execute arbitrary SQL commands via the user_rating parameter.
Mambo Mambo 4.5.1.3
Mambo Mambo 4.5.1a
Mambo Mambo 4.5 1.0.9
Mambo Mambo 4.5.0.2
Mambo Mambo 4.5.2
Mambo Mambo 4.5.2.2
1 EDB exploit
765
VMScore
CVE-2006-1794
SQL injection vulnerability in Mambo 4.5.3, 4.5.3h, and possibly earlier versions allows remote malicious users to execute arbitrary SQL commands via (1) the $username variable in the mosGetParam function and (2) the $task parameter in the mosMenuCheck function in (a) includes/ma...
Mambo Mambo 4.0.14
Mambo Mambo 4.5.2.3
Mambo Mambo 4.5.3h
Mambo Mambo 4.5.1 1.0.9
Mambo Mambo 4.5.1a
Mambo Mambo 4.5 1.0.0
Mambo Mambo 4.5 1.0.1
Mambo Mambo 4.5.2.1
Mambo Mambo 4.5.2.2
Mambo Mambo 4.5 1.0.3 Beta
Mambo Mambo
Mambo Mambo 4.5.2
Mambo Mambo 4.5 1.0.2
1 EDB exploit
668
VMScore
CVE-2006-4286
PHP remote file inclusion vulnerability in contentpublisher.php in the contentpublisher component (com_contentpublisher) for Mambo allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter. NOTE: this issue has been disputed by...
Mambo Mambo 4.6
Mambo Mambo 4.5 1.0.1
Mambo Mambo 4.5.2
Mambo Mambo 4.5 1.0.3 Beta
Mambo Mambo 4.5.0.2
Mambo Mambo 4.5.2.2
Mambo Mambo 4.5.1 1.0.9
Mambo Mambo 4.5.2.3
Mambo Mambo 4.5.3h
Mambo Mambo 4.5.1a
Mambo Mambo 4.5 1.0.0
Mambo Mambo 4.5.2.1
Mambo Mambo 4.0.14
Mambo Mambo 4.5.1.3
Mambo Mambo 4.5 1.0.2
Mambo Mambo 4.5 1.0.9
265
VMScore
CVE-2005-3738
globals.php in Mambo Site Server 4.0.14 and previous versions, when register_globals is disabled, allows remote malicious users to overwrite variables in the GLOBALS array and conduct various attacks, as demonstrated using the mosConfig_absolute_path parameter to content.html.php...
Mambo Mambo Site Server 4.0.12 Rc1
Mambo Mambo Site Server 4.0.12 Rc2
Mambo Mambo Site Server 4.0.11
Mambo Mambo Site Server 4.0.12
Mambo Mambo Site Server 4.0
Mambo Mambo Site Server 4.0.10
Mambo Mambo Site Server 4.0.12 Rc3
Mambo Mambo Site Server 4.0.14
Mambo Mambo Site Server 4.0.12 Beta
Mambo Mambo Site Server 4.0.12 Beta 2
1 EDB exploit
755
VMScore
CVE-2008-0517
SQL injection vulnerability in index.php in the Darko Selesi EstateAgent (com_estateagent) 0.1 component for Mambo 4.5.x and Joomla! allows remote malicious users to execute arbitrary SQL commands via the objid parameter in a contact showObject action.
Mambo Mambo 4.5.1 Beta
Mambo Mambo 4.5.1 Beta2
Mambo Mambo 4.5.4
Mambo Mambo 4.5 1.0.0
Darko Selesi Estateagent 0.1
Joomla Joomla
Mambo Mambo 4.5.1a
Mambo Mambo 4.5.2
Mambo Mambo 4.5 1.0.1
Mambo Mambo 4.5 1.0.2
Mambo Mambo 4.5.1.3
Mambo Mambo 4.5.1 1.0.9
Mambo Mambo 4.5.2.3
Mambo Mambo 4.5.3h
Mambo Mambo 4.5
Mambo Mambo 4.5.0.2
Mambo Mambo 4.5.2.1
Mambo Mambo 4.5.2.2
Mambo Mambo 4.5 1.0.3 Beta
Mambo Mambo 4.5 1.0.9
1 EDB exploit
695
VMScore
CVE-2008-2905
PHP remote file inclusion vulnerability in includes/Cache/Lite/Output.php in the Cache_Lite package in Mambo 4.6.4 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path paramet...
Mambo Mambo 4.5.1.3
Mambo Mambo 4.5.1 1.0.9
Mambo Mambo 4.5.3h
Mambo Mambo 4.5.4
Mambo Mambo 4.6.1
Mambo Mambo 4.6.2
Mambo Mambo 4.0.14
Mambo Mambo 4.5.1a
Mambo Mambo 4.5.2
Mambo Mambo 4.5.2.1
Mambo Mambo 4.5 1.0.2
Mambo Mambo 4.5 1.0.3 Beta
Mambo Mambo 4.5.1 Beta
Mambo Mambo 4.5.1 Beta2
Mambo Mambo 4.5 1.0.0
Mambo Mambo 4.5 1.0.1
Mambo Mambo 4.6.4
Mambo Mambo 4.5
Mambo Mambo 4.5.0.2
Mambo Mambo 4.5.2.2
Mambo Mambo 4.5.2.3
Mambo Mambo 4.5 1.0.9
3 EDB exploits
668
VMScore
CVE-2005-0512
PHP remote file inclusion vulnerability in Tar.php in Mambo 4.5.2 allows remote malicious users to execute arbitrary PHP code by modifying the mosConfig_absolute_path parameter to reference a URL on a remote web server that contains the code, a different vulnerability than CVE-20...
Mambo Mambo
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started