CVE Vulnerabilities

CVE-2004-1826

Published: Mar 16, 2004 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

SQL injection vulnerability in index.php in Mambo Open Source 4.5 stable 1.0.3 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.

Affected Software

Name Vendor Start Version End Version
Mambo_open_source_4.5 Mambo 1.0.0 1.0.0
Mambo_open_source_4.5 Mambo 1.0.1 1.0.1
Mambo_open_source_4.5 Mambo 1.0.2 1.0.2
Mambo_open_source_4.5 Mambo 1.0.3 1.0.3
Mambo_open_source_4.5 Mambo 1.0.3beta 1.0.3beta

References