CVE-2005-4156

2022-10-0316:22:44

mitre

www.cve.org

mambo 4.5

remote attack

file read

denial of service

6.9 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.4%

JSON

Unspecified vulnerability in Mambo 4.5 (1.0.0) through 4.5 (1.0.9), with magic_quotes_gpc disabled, allows remote attackers to read arbitrary files and possibly cause a denial of service via a query string that ends with a NULL character.

References

securitytracker.com/alerts/2005/Nov/1015176.html

www.procheckup.com/Vulner_PR0511.php