Page 19 of 92 results (0.001 seconds)

CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0

Mambo Site Server 4.0.11 installs with a default username and password of admin, which allows remote attackers to gain privileges. • http://archives.neohapsis.com/archives/bugtraq/2002-12/0111.html https://exchange.xforce.ibmcloud.com/vulnerabilities/10857 • CWE-255: Credentials Management Errors •

CVSS: 10.0EPSS: 1%CPEs: 6EXPL: 1

index2.php in Mambo Site Server 3.0.0 through 3.0.5 allows remote attackers to gain Mambo administrator privileges by setting the PHPSESSID parameter and providing the appropriate administrator information in other parameters. • http://archives.neohapsis.com/archives/bugtraq/2001-07/0569.html http://prdownloads.sourceforge.net/mambo/mambov3.0.6.tar.gz http://www.osvdb.org/1911 http://www.securityfocus.com/bid/3093 https://exchange.xforce.ibmcloud.com/vulnerabilities/6910 •