CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE-2008-0499 describes a SQL injection vulnerability in Mambo LaiThai 4.5.5. The affected component is the Mambo LaiThai 4.5.5 installation (specific file/parameter not disclosed in the provided documents). The underlying issue is a SQL injection that enables remote attackers to execute arbitrar...

7.5CVSS8.4AI score0.00489EPSS

Exploits0References5Affected Software1

Cvelist•added 2008/01/30 9:0 p.m.•16 views

CVE-2008-0500

Multiple unspecified vulnerabilities in Mambo LaiThai 4.5.5 have unknown impact and attack vectors related to 1 modlogin and 2 modtemplatechooser...

6.7AI score0.00416EPSS

Exploits0References5

Cvelist•added 2008/01/30 9:0 p.m.•15 views

CVE-2008-0499

SQL injection vulnerability in Mambo LaiThai 4.5.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

8.4AI score0.00489EPSS

Exploits0References5

CVE•added 2008/01/30 9:0 p.m.•40 views

CVE-2008-0500

CVE-2008-0500 affects Mambo LaiThai 4.5.5 and relates to vulnerabilities in two modules, mod_login and mod_template_chooser. The NVD entry describes multiple unspecified vulnerabilities with unknown impact and attack vectors, indicating a high-severity issue (CVSSv2 base score 10.0, network attac...

10CVSS6.7AI score0.00416EPSS

Exploits0References5Affected Software1

NVD•added 2007/03/02 9:18 p.m.•9 views

CVE-2006-7093

Cross-site scripting XSS vulnerability in Mambo LaiThai 4.5.4 Security Patch 2 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.8CVSS5.7AI score0.00376EPSS

Exploits0References4

Positive Technologies•added 2007/02/28 12:0 a.m.•2 views

PT-2007-1371 · Laithai · Mambo

Name of the Vulnerable Software and Affected Versions: Mambo LaiThai versions 4.5.4 Security Patch 2 and earlier Description: A cross-site scripting XSS issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Recommendations: For versions 4.5.4 Security Patch...

5.8CVSS5.7AI score0.00376EPSS

Exploits0References5

Cvelist•added 2007/02/28 12:0 a.m.•15 views

CVE-2006-7092

SQL injection vulnerability in includes/mambo.php in Mambo LaiThai 4.5.4 SP2 and earlier allows remote attackers to execute arbitrary SQL commands via the usercookiepassword cookie parameter...

8.4AI score0.00502EPSS

Exploits0References4

CVE•added 2007/02/28 12:0 a.m.•47 views

CVE-2006-7092

CVE-2006-7092 describes an SQL injection in Mambo LaiThai software (versions 4.5.4 SP2 and earlier) via the usercookie[password] cookie parameter in includes/mambo.php. Remote attackers could execute arbitrary SQL commands. The CVSS metrics indicate a network-accessible high-severity issue with l...

7.5CVSS8.8AI score0.00502EPSS

Exploits0References4Affected Software1

Positive Technologies•added 2007/02/28 12:0 a.m.•2 views

PT-2007-1370 · Mambo · Mambo Laithai

Name of the Vulnerable Software and Affected Versions: Mambo LaiThai versions 4.5.4 SP2 and earlier Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the usercookiepassword cookie parameter. Recommendations: For Mambo LaiThai versions 4.5.4 SP2...

7.5CVSS7.9AI score0.00502EPSS

Exploits0References5

CVE•added 2007/02/28 12:0 a.m.•46 views

CVE-2006-7093

The CVE-2006-7093 entry describes a cross-site scripting (XSS) vulnerability in Mambo LaiThai, affecting versions 4.5.4 Security Patch 2 and earlier. The issue is an XSS flaw that allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. The connected PT-2007-1371 en...

5.8CVSS5.9AI score0.00376EPSS

Exploits0References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by