Описание
Unspecified vulnerability in Mambo 4.5 (1.0.0) through 4.5 (1.0.9), with magic_quotes_gpc disabled, allows remote attackers to read arbitrary files and possibly cause a denial of service via a query string that ends with a NULL character.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:mambo:mambo_open_source_4.5:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:mambo:mambo_open_source_4.5:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mambo:mambo_open_source_4.5:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:mambo:mambo_open_source_4.5:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:mambo:mambo_open_source_4.5:1.0.3_beta:*:*:*:*:*:*:*
cpe:2.3:a:mambo:mambo_open_source_4.5:1.0.9:*:*:*:*:*:*:*
EPSS
Процентиль: 75%
0.00877
Низкий
9.4 Critical
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Unspecified vulnerability in Mambo 4.5 (1.0.0) through 4.5 (1.0.9), with magic_quotes_gpc disabled, allows remote attackers to read arbitrary files and possibly cause a denial of service via a query string that ends with a NULL character.
EPSS
Процентиль: 75%
0.00877
Низкий
9.4 Critical
CVSS2
Дефекты
NVD-CWE-Other