📦

mambo_open_source_4.5

Vendor: mambo

Actively Exploited 0 CISA KEV List

PoC / Exploits 1 Code Available

Total RCEs 0 Remote Access

Total CVEs 2 Total Indexed

Avg. EPSS 0.78% Exploit Prob.

Latest CVE CVE-2005-4156 Dec 11

Security Vulnerability Index

Page 1 / 1

9.4 CVSS

CVE-2005-4156

Unspecified vulnerability in Mambo 4.5 (1.0.0) through 4.5 (1.0.9), with magic_quotes_gpc disabled, allows remote attackers to read arbitrary files and possibly cause a denial of service via a query string that ends with a NULL character.

EPSS: 0.88%

Severity: HIGH

Dec 11, 2005

7.5 CVSS

CVE-2004-1826

Exploit Found

SQL injection vulnerability in index.php in Mambo Open Source 4.5 stable 1.0.3 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.

EPSS: 0.68%

Severity: HIGH

Mar 16, 2004

Displaying 2 of 2 Total Entries

Total 1 Sections