2 matches found
FreeBSD Ports: mambo
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
CVE-2006-7149
CVE-2006-7149 describes multiple cross-site scripting (XSS) vulnerabilities in Mambo 4.6.x, allowing remote attackers to inject arbitrary script or HTML. The issues arise from reflected input in the query string of index.php and from the mcname parameter sent to moscomment.php and com_comment.php...