CVE-2006-7202

Name of the Vulnerable Software and Affected Versions Mambo version 4.6.1

Description The issue concerns the dofreePDF function in includes/pdf.php, which fails to properly check access rights for database content. This allows remote attackers to read certain content via unspecified vectors.

Recommendations For Mambo version 4.6.1, consider restricting access to the dofreePDF function in includes/pdf.php until a proper fix is available. Additionally, review and tighten database access rights to minimize potential exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.