Lucene search
MitreCVELIST:CVE-2006-0871HistoryFeb 24, 2006 - 11:00 a.m.
CVE-2006-0871
2006-02-2411:00:00
mitre
www.cve.org
5
Directory traversal vulnerability in the _setTemplate function in Mambo 4.5.3, 4.5.3h, and possibly earlier versions allows remote attackers to read and include arbitrary files via the mos_change_template parameter. NOTE: CVE-2006-1794 has been assigned to the SQL injection vector.
References
archives.neohapsis.com/archives/bugtraq/2006-02/0463.html
secunia.com/advisories/18935
securityreason.com/securityalert/493
source.mambo-foundation.org/view/news/Announcements/Security_Patch_Released/
www.gulftech.org/?node=research&article_id=00104-02242006
www.osvdb.org/23505
www.vupen.com/english/advisories/2006/0719
Related
prion
prion
Directory traversal
2006-02-24 11:02:00
Sql injection
2006-04-17 10:02:00
nessus
nessus
Mambo Open Source Multiple Vulnerabilities
2006-03-27 00:00:00
nvd
nvd
CVE-2006-0871
2006-02-24 11:02:00
CVE-2006-1794
2006-04-17 10:02:00
cve
cve
CVE-2006-0871
2006-02-24 11:02:00
CVE-2006-1794
2006-04-17 10:02:00
exploitpack
exploitpack
Mambo 4.5.3h - Multiple Vulnerabilities
2016-02-24 00:00:00
exploitdb
exploitdb
Mambo < 4.5.3h - Multiple Vulnerabilities
2016-02-24 00:00:00
openvas
openvas
FreeBSD Ports: mambo
2008-09-04 00:00:00
FreeBSD Ports: mambo
2008-09-04 00:00:00
freebsd
freebsd
mambo -- SQL injection vulnerabilities
2006-06-19 00:00:00
cvelist
cvelist
CVE-2006-1794
2006-04-17 10:00:00