CVE Vulnerabilities

CVE-2004-1826

Published: Mar 16, 2004 | Modified: Nov 20, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

SQL injection vulnerability in index.php in Mambo Open Source 4.5 stable 1.0.3 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.

Affected Software

Name Vendor Start Version End Version
Mambo_open_source_4.5 Mambo 1.0.0 (including) 1.0.0 (including)
Mambo_open_source_4.5 Mambo 1.0.1 (including) 1.0.1 (including)
Mambo_open_source_4.5 Mambo 1.0.2 (including) 1.0.2 (including)
Mambo_open_source_4.5 Mambo 1.0.3 (including) 1.0.3 (including)
Mambo_open_source_4.5 Mambo 1.0.3beta (including) 1.0.3beta (including)

References