SQL injection vulnerability in content.php in Mambo 4.5.2.2 and earlier allows remote attackers to execute arbitrary SQL commands via the user_rating parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Mambo | Mambo | 4.5.2 | 4.5.2 |
Mambo | Mambo | 4.5.0.2 | 4.5.0.2 |
Mambo | Mambo | 4.5.2.2 | 4.5.2.2 |
Mambo | Mambo | 4.5.1a | 4.5.1a |
Mambo | Mambo | 4.5.1.3 | 4.5.1.3 |
Mambo | Mambo | 4.5_1.0.9 | 4.5_1.0.9 |