Unrated severityNVD Advisory· Published Dec 11, 2005· Updated Jun 16, 2026
CVE-2005-4156
CVE-2005-4156
Description
Unspecified vulnerability in Mambo 4.5 (1.0.0) through 4.5 (1.0.9), with magic_quotes_gpc disabled, allows remote attackers to read arbitrary files and possibly cause a denial of service via a query string that ends with a NULL character.
Affected products
7cpe:2.3:a:mambo:mambo_open_source_4.5:1.0.0:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:mambo:mambo_open_source_4.5:1.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:mambo:mambo_open_source_4.5:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:mambo:mambo_open_source_4.5:1.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:mambo:mambo_open_source_4.5:1.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:mambo:mambo_open_source_4.5:1.0.3_beta:*:*:*:*:*:*:*
- cpe:2.3:a:mambo:mambo_open_source_4.5:1.0.9:*:*:*:*:*:*:*
- Range: >=4.5 (1.0.0) <=4.5 (1.0.9)
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.