Home
Bugtraq
Full List
Only Bugs
Only Tricks
Only Exploits
Only Dorks
Only CVE
Only CWE
Fake Notes
Ranking
CVEMAP
Full List
Show Vendors
Show Products
CWE Dictionary
Check CVE Id
Check CWE Id
Search
Bugtraq
CVEMAP
By author
CVE Id
CWE Id
By vendors
By products
RSS
Bugtraq
CVEMAP
CVE Products
Bugs
Exploits
Dorks
More
cIFrex
Facebook
Twitter
Donate
About
Submit
Vulnerabilities for
'Mambo site server'
2007-09-06
CVE-2007-4745
CWE-79
Multiple cross-site scripting (XSS) vulnerabilities in the AkoBook 3.42 and earlier component (com_akobook) for Mambo allow remote attackers to inject arbitrary web script or HTML via Javascript events in the (1) gbmail and (2) gbpage parameters in the sign function.
2005-11-22
CVE-2005-3738
CWE-Other
globals.php in Mambo Site Server 4.0.14 and earlier, when register_globals is disabled, allows remote attackers to overwrite variables in the GLOBALS array and conduct various attacks, as demonstrated using the mosConfig_absolute_path parameter to content.html.php for remote PHP file inclusion.
2003-03-18
CVE-2003-1203
Cross-site scripting (XSS) vulnerability in index.php for Mambo Site Server 4.0.10 allows remote attackers to execute script on other clients via the ?option parameter.
2002-12-31
CVE-2002-2290
Mambo Site Server 4.0.11 installs with a default username and password of admin, which allows remote attackers to gain privileges.
CVE-2002-2247
The administrator/phpinfo.php script in Mambo Site Server 4.0.11 allows remote attackers to obtain sensitive information such as the full web root path via phpinfo.php, which calls the phpinfo function.
CVE-2002-1662
Multiple cross-site scripting (XSS) vulnerabilities in Mambo Site Server 4.0.11 allow remote attackers to execute arbitrary script on other clients via (1) search.php and (2) the "Your name" field during account registration.
2001-07-25
CVE-2001-1011
index2.php in Mambo Site Server 3.0.0 through 3.0.5 allows remote attackers to gain Mambo administrator privileges by setting the PHPSESSID parameter and providing the appropriate administrator information in other parameters.
>>>
Vendor:
Mambo
65
Products
Site server
Mambo site server
Mambo open source
Mambo
Mambo open source 4.5
Mambo portal
Videodb
Sitemap
Smf-forum
Mambo calendar
Mambo multibanners
Mambatstaff
Artlinks component
Bayesiannaivefilter
Mambo gallery manager
Moslistmessenger component
Mtg myhomepage component
X-shop component
Mambelfish component
Catalogshop component
Anjel component
A6mambocredits component
Bigape-backup component
Contacts xtd component
Com comprofiler component
Jim component
Prince clan chess component
Glossary
Extcalthai module
Mostlyce
Nfn address book
Swmenu component
Flatmenu
Taskhopper component
Jambook
Remository
Com newsletter
Com mamml
Musepoes component
Com recipes
Com jokes
Com awesom
Com shambo2
Com sobi2
Com downloads
Com neoreferences
Com sermon
Com gallery
Com neogallery
Com doc
Com comments
Com quiz
Com scheduling component
Com filebase component
Kemas antonius com quran
Com ricette component
Com profile
Com detail
Com salesrep
Com facileforms
Com garyscookbook
Com ewriting
Datsogallery
Com comprofiler
Com flippingbook
Copyright
2024
, cxsecurity.com
Back to Top