CVE-2003-1245

Name of the Vulnerable Software and Affected Versions Mambo version 4.0.12

Description The issue allows remote attackers to gain administrator access. This is achieved by making a URL request where the session id is set to the MD5 hash of a session cookie.

Recommendations For Mambo version 4.0.12, consider restricting access to the index2.php file until a patch is available. As a temporary workaround, avoid using the session id parameter in URL requests to minimize the risk of exploitation.