VYPR
Unrated severityNVD Advisory· Published Feb 6, 2007· Updated Jun 16, 2026

CVE-2007-0789

CVE-2007-0789

Description

SQL injection vulnerability in Mambo before 4.5.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors in cancel edit functions, possibly related to the id parameter.

Affected products

2
  • cpe:2.3:a:mambo:mambo:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:mambo:mambo:*:*:*:*:*:*:*:*range: <=4.5.4
    • (no CPE)range: <4.5.5

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.