Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-0875

Malware in sbrugna...

6.4CVSS6.1AI score0.01669EPSS
Exploits2References8
CVE
CVE
added 2006/07/21 5:0 p.m.376 views

CVE-2006-3773

The CVE-2006-3773 entry describes a PHP remote file inclusion in the SMF-Forum Bridge component (com_smf) used by SMF-Forum 1.3.1.3 for Joomla! and Mambo 4.5.3+. The vulnerability stems from the mosConfig_absolute_path parameter, which can be supplied via a URL to cause arbitrary PHP code executi...

6.8CVSS7.6AI score0.05793EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2006/04/17 10:2 a.m.24 views

CVE-2006-1794

SQL injection vulnerability in Mambo 4.5.3, 4.5.3h, and possibly earlier versions allows remote attackers to execute arbitrary SQL commands via 1 the $username variable in the mosGetParam function and 2 the $task parameter in the mosMenuCheck function in a includes/mambo.php; and 3 the $filter...

7.6CVSS8.2AI score0.05527EPSS
Exploits3References9
Prion
Prion
added 2006/04/17 10:2 a.m.25 views

Sql injection

SQL injection vulnerability in Mambo 4.5.3, 4.5.3h, and possibly earlier versions allows remote attackers to execute arbitrary SQL commands via 1 the $username variable in the mosGetParam function and 2 the $task parameter in the mosMenuCheck function in a includes/mambo.php; and 3 the $filter...

7.6CVSS8.5AI score0.05527EPSS
Exploits3References9Affected Software1
Cvelist
Cvelist
added 2006/04/17 10:0 a.m.34 views

CVE-2006-1794

SQL injection vulnerability in Mambo 4.5.3, 4.5.3h, and possibly earlier versions allows remote attackers to execute arbitrary SQL commands via 1 the $username variable in the mosGetParam function and 2 the $task parameter in the mosMenuCheck function in a includes/mambo.php; and 3 the $filter...

8.1AI score0.05527EPSS
Exploits3References9
Prion
Prion
added 2006/02/24 11:2 a.m.19 views

Directory traversal

Directory traversal vulnerability in the setTemplate function in Mambo 4.5.3, 4.5.3h, and possibly earlier versions allows remote attackers to read and include arbitrary files via the moschangetemplate parameter. NOTE: CVE-2006-1794 has been assigned to the SQL injection vector...

6.4CVSS7.8AI score0.05527EPSS
Exploits3References7Affected Software1
CVE
CVE
added 2006/02/24 11:0 a.m.66 views

CVE-2006-0871

CVE-2006-0871 (Mambo 4.5.3/4.5.3h and earlier): directory traversal in _setTemplate via mos_change_template parameter could allow remote reading of arbitrary files. Related entries note an updated Mambo release; exploits reference local file inclusion/remote impact in multiple components. CVE-200...

6.4CVSS7.4AI score0.01669EPSS
Exploits2References7Affected Software1
Rows per page
Query Builder