Multiple cross-site scripting (XSS) vulnerabilities in index.php in Mambo 4.6.2 allow remote malicious users to inject arbitrary web script or HTML via the (1) Itemid parameter in a com_frontpage option and the (2) option parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mambo mambo 4.6.2 |