CVE-2001-1011
First published: Wed Jul 25 2001(Updated: )
index2.php in Mambo Site Server 3.0.0 through 3.0.5 allows remote attackers to gain Mambo administrator privileges by setting the PHPSESSID parameter and providing the appropriate administrator information in other parameters.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mambo Mambo Site Server | =3.0.4 | |
| Mambo Mambo Site Server | =3.0.3 | |
| Mambo Mambo Site Server | =3.0 | |
| Mambo Mambo Site Server | =3.0.5 | |
| Mambo Mambo Site Server | =3.0.1 | |
| Mambo Mambo Site Server | =3.0.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/author
- agent/references
- agent/description
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/remedy
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/mambo
- canonical/mambo mambo site server
- version/mambo mambo site server/3.0.4
- version/mambo mambo site server/3.0.3
- version/mambo mambo site server/3.0
- version/mambo mambo site server/3.0.5
- version/mambo mambo site server/3.0.1
- version/mambo mambo site server/3.0.2