6.6 Medium
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
77.7%
The dofreePDF function in includes/pdf.php in Mambo 4.6.1 does not properly check access rights for database content, which allows remote attackers to read certain content via unspecified vectors.
secunia.com/advisories/25039
www.securityfocus.com/bid/23787
www.tracker.mambo-foundation.org/?do=details&task_id=170