📦

mostlyce

Vendor: mambo

Actively Exploited 0 CISA KEV List

PoC / Exploits 1 Code Available

Total RCEs 1 Remote Access

Total CVEs 2 Total Indexed

Avg. EPSS 2.32% Exploit Prob.

Latest CVE CVE-2008-2500 May 29

Security Vulnerability Index

Page 1 / 1

4.3 CVSS

CVE-2008-2500

Cross-site scripting (XSS) vulnerability in the MOStlyContent Editor (MOStlyCE) component before 3.0 for Mambo allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

EPSS: 0.22%

Severity: MEDIUM

May 29, 2008

7.5 CVSS

CVE-2006-7104

RCE Exploit Found

PHP remote file inclusion vulnerability in htmltemplate.php in the Chad Auld MOStlyContent Editor (MOStlyCE) as created on May 2006, a component for Mambo 4.5.4, allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.

EPSS: 4.41%

Severity: HIGH

Mar 03, 2007

Displaying 2 of 2 Total Entries

Total 1 Sections