Lucene search
HistoryJun 09, 2014 - 7:55 p.m.
CVE-2013-2562
mambo
cms
4.6.5
mysql
database
password
cleartext
vulnerability
nvd
4.9 Medium
AI Score
Confidence
High
2.1 Low
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
5.2%
Mambo CMS 4.6.5 stores the MySQL database password in cleartext in the document root, which allows local users to obtain sensitive information via unspecified vectors.
Affected configurations
Node
mambo-foundationmambo_cmsMatch4.6.5
| CPE | Name | Operator | Version |
|---|---|---|---|
| mambo-foundation:mambo_cms | mambo-foundation mambo cms | eq | 4.6.5 |
Related
nvd
nvd
CVE-2013-2562
2014-06-09 19:55:09
prion
prion
Design/Logic Flaw
2014-06-09 19:55:00
cvelist
cvelist
CVE-2013-2562
2014-06-09 19:00:00
openvas
openvas
Mambo CMS <= 4.6.5 Multiple Vulnerabilities
2019-02-26 00:00:00
4.9 Medium
AI Score
Confidence
High
2.1 Low
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
5.2%
Related for CVE-2013-2562