2 matches found
Mambo < 4.5.3h - Multiple Vulnerabilities
Mambo Multiple Vulnerabilities Vendor: Miro International Pty Ltd Product: Mambo Version: = 4.5.3h Website: http://www.mamboserver.com BID: 16775 CVE: CVE-2006-0871 CVE-2006-1794 OSVDB: 23402 23503 23505 SECUNIA: 18935 PACKETSTORM: 44191 Description: Mambo is a popular Open Source Content...
CVE-2006-1794
CVE-2006-1794 describes an SQL injection vulnerability in Mambo 4.5.3, 4.5.3h, and possibly earlier versions. The affected code paths cited are: (1) mosGetParam in includes/mambo.php via the $username variable, (2) mosMenuCheck in includes/mambo.php via the $task parameter, and (3) showCategory i...