Mambo : Security Vulnerabilities, CVEs, Published In May 2007
MOStlyDB Admin in Mambo 4.6.1 does not properly check privileges, which allows remote authenticated administrators to have an unknown impact via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Max CVSS
4.0
EPSS Score
0.17%
Published
2007-05-09
Updated
2008-11-15
The dofreePDF function in includes/pdf.php in Mambo 4.6.1 does not properly check access rights for database content, which allows remote attackers to read certain content via unspecified vectors.
Max CVSS
7.8
EPSS Score
0.55%
Published
2007-05-09
Updated
2008-09-05
2 vulnerabilities found