Multiple SQL injection vulnerabilities in Mambo 4.6.x allow remote malicious users to execute arbitrary SQL commands via the mcname parameter to (1) moscomment.php and (2) com_comment.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mambo mambo open source 4.6 |
||
mambo mambo open source 4.6.1 |