Unrated severityNVD Advisory· Published Feb 6, 2007· Updated Jun 16, 2026
CVE-2007-0789
CVE-2007-0789
Description
SQL injection vulnerability in Mambo before 4.5.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors in cancel edit functions, possibly related to the id parameter.
Affected products
2cpe:2.3:a:mambo:mambo:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:mambo:mambo:*:*:*:*:*:*:*:*range: <=4.5.4
- (no CPE)range: <4.5.5
Patches
Vulnerability mechanics
References
4- secunia.com/advisories/24044nvdVendor Advisory
- www.vupen.com/english/advisories/2007/0480nvdVendor Advisory
- mamboxchange.com/frs/shownotes.phpnvdURL Repurposed
- osvdb.org/33088nvd
News mentions
0No linked articles in our index yet.