VYPR

MambAds

by Mambo (software)

CVEs (2)

  • CVE-2008-5226Nov 25, 2008
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in the MambAds (com_mambads) component 1.0 RC1 Beta and 1.0 RC1 for Mambo allows remote attackers to execute arbitrary SQL commands via the ma_cat parameter in a view action to index.php, a different vector than CVE-2007-5177.

  • CVE-2007-5177Oct 3, 2007
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in index.php in the MambAds (com_mambads) 1.5 and earlier component for Mambo allows remote attackers to execute arbitrary SQL commands via the caid parameter.