Mambo Open Source@4.6 Security Vulnerabilities and Issues — Mambo Open Source@4.6 CVE List

Lucene search

MamboMambo Open Source4.6

2 matches found

CVE•added 2005/05/19 4:0 a.m.•44 views

CVE-2004-2072

Cross-site scripting (XSS) vulnerability in index.php for Mambo Open Source 4.6, and possibly earlier versions, allows remote attackers to execute script on other clients via the Itemid parameter.

6.8CVSS6.2AI score0.00524EPSS

CVE•added 2007/03/07 8:19 p.m.•33 views

CVE-2006-7150

Multiple SQL injection vulnerabilities in Mambo 4.6.x allow remote attackers to execute arbitrary SQL commands via the mcname parameter to (1) moscomment.php and (2) com_comment.php.

7.5CVSS8.5AI score0.00497EPSS