PT-2020-7104 · Mambo Cms · Mambo Cms
Josh Bressers
·
Published
2020-02-12
·
Updated
2020-02-24
·
CVE-2011-2499
CVSS v2.0
4.3
Medium
| Vector | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Mambo CMS versions through 4.6.5
Description
The issue concerns multiple cross-site scripting (XSS) flaws. Cross-site scripting is a type of security vulnerability that allows an attacker to inject malicious scripts into a website, potentially leading to unauthorized access or control of user sessions.
Recommendations
For versions through 4.6.5, update to a version later than 4.6.5 to resolve the issue.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Mambo Cms