CVE-2004-1825

Name of the Vulnerable Software and Affected Versions Mambo Open Source versions 4.5 stable 1.0.3 and earlier

Description A cross-site scripting issue allows remote attackers to inject arbitrary web script or HTML via the return or mos change template parameters in the "index.php" file.

Recommendations For Mambo Open Source versions 4.5 stable 1.0.3 and earlier, update to a version later than 1.0.3 to resolve the issue.