Описание
index2.php in Mambo Site Server 3.0.0 through 3.0.5 allows remote attackers to gain Mambo administrator privileges by setting the PHPSESSID parameter and providing the appropriate administrator information in other parameters.
Ссылки
- ExploitVendor Advisory
- PatchVendor Advisory
- ExploitVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:mambo:mambo_site_server:3.0:*:*:*:*:*:*:*
cpe:2.3:a:mambo:mambo_site_server:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mambo:mambo_site_server:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:mambo:mambo_site_server:3.0.3:*:*:*:*:*:*:*
cpe:2.3:a:mambo:mambo_site_server:3.0.4:*:*:*:*:*:*:*
cpe:2.3:a:mambo:mambo_site_server:3.0.5:*:*:*:*:*:*:*
EPSS
Процентиль: 82%
0.01703
Низкий
10 Critical
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
index2.php in Mambo Site Server 3.0.0 through 3.0.5 allows remote attackers to gain Mambo administrator privileges by setting the PHPSESSID parameter and providing the appropriate administrator information in other parameters.
EPSS
Процентиль: 82%
0.01703
Низкий
10 Critical
CVSS2
Дефекты
NVD-CWE-Other