IDCVSSSummaryLast (major) updatePublished
CVE-2008-7212 5.0
MOStlyCE before 2.4, as used in Mambo 4.6.3 and earlier, allows remote attackers to obtain sensitive information via certain requests to mambots/editors/mostlyce/jscripts/tiny_mce/filemanager/connectors/php/connector.php, which reveals the installati
11-10-2018 - 20:58 11-09-2009 - 16:30
CVE-2008-7213 4.3
Cross-site scripting (XSS) vulnerability in mambots/editors/mostlyce/jscripts/tiny_mce/filemanager/connectors/php/connector.php in MOStlyCE before 2.4, as used in Mambo 4.6.3 and earlier, allows remote attackers to inject arbitrary web script or HTML
11-10-2018 - 20:58 11-09-2009 - 16:30
CVE-2008-7214 6.8
Cross-site request forgery (CSRF) vulnerability in administrator/index2.php in MOStlyCE before 2.4, as used in Mambo 4.6.3 and earlier, allows remote attackers to hijack the authentication of administrators for requests that add new administrator acc
11-10-2018 - 20:58 11-09-2009 - 16:30
CVE-2008-7215 5.8
The Image Manager in MOStlyCE before 2.4, as used in Mambo 4.6.3 and earlier, allows remote attackers to rename arbitrary files and cause a denial of service via modified file[NewFile][name], file[NewFile][tmp_name], and file[NewFile][size] parameter
11-10-2018 - 20:58 11-09-2009 - 16:30
Back to Top Mark selected
Back to Top