EUVD-2005-3735

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Mambo Site Server 4.0.14 allows remote variable overwrite, leading to PHP file inclusion attacks.

Reporter	Title	Published	Views	Family All 9
Tenable Nessus	Mambo Content Server Detection Global Variables Overwrite	22 Feb 200500:00	–	nessus
Tenable Nessus	Mambo Open Source / Joomla! GLOBALS Variable Remote File Include	17 Nov 200500:00	–	nessus
Circl	CVE-2005-3738	10 Jun 202521:02	–	circl
CVE	CVE-2005-3738	22 Nov 200511:00	–	cve
Cvelist	CVE-2005-3738	22 Nov 200511:00	–	cvelist
NVD	CVE-2005-3738	22 Nov 200511:03	–	nvd
OpenVAS	FreeBSD Ports: mambo	4 Sep 200800:00	–	openvas
OpenVAS	FreeBSD Ports: mambo	4 Sep 200800:00	–	openvas
VulnCheck KEV	VulnCheck KEV: CVE-2005-3738	22 Nov 200500:00	–	vulncheck_kev

[
  {
    "enisaIdVendor": [
      {
        "id": "046d4e2d-2624-3f5f-a64f-2c17b2cc0569",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "99f4f8e0-b5b8-3ba4-8a4d-31ec3ff1a4d9",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Source	Link
securityfocus	www.securityfocus.com/archive/1/426942/100/0/threaded
securityfocus	www.securityfocus.com/bid/15461
secunia	www.secunia.com/advisories/17622
forum	www.forum.mamboserver.com/showthread.php
securitytracker	www.securitytracker.com/id
archives	www.archives.neohapsis.com/archives/fulldisclosure/2005-11/0520.html
securityfocus	www.securityfocus.com/archive/1/427196/100/0/threaded
securityfocus	www.securityfocus.com/archive/1/417215
vupen	www.vupen.com/english/advisories/2005/2473
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.3Medium risk

Vulners AI Score6.3

CVSS 22.6

EPSS0.05487