CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2006-7092

HIGH
7.5
CVSS Severity Score
EPSS Score0.0460%
EPSS Percentile6.76th
Published2007年3月2日
Last Modified2026年4月23日

Vulnerability Description

SQL injection vulnerability in includes/mambo.php in Mambo LaiThai 4.5.4 SP2 and earlier allows remote attackers to execute arbitrary SQL commands via the usercookie[password] cookie parameter.

Affected Platforms (CPE)

📦
Mamboxchange

Laithai

<= 4.5.4

References & Advisories

🔗 http://mamboxchange.com/forum/forum.php?forum_id=7767
🔗 http://secunia.com/advisories/22263
🔗 http://www.securityfocus.com/bid/20413
🔗 http://www.vupen.com/english/advisories/2006/3953
🔗 http://mamboxchange.com/forum/forum.php?forum_id=7767
🔗 http://secunia.com/advisories/22263
🔗 http://www.securityfocus.com/bid/20413
🔗 http://www.vupen.com/english/advisories/2006/3953

相關漏洞威脅

CVE-2008-050010.0

Multiple unspecified vulnerabilities in Mambo LaiThai 4.5.5 have unknown impact and attack vectors related to (1) mod_login and (2...

CVE-2008-04997.5

SQL injection vulnerability in Mambo LaiThai 4.5.5 allows remote attackers to execute arbitrary SQL commands via unspecified vecto...

CVE-2006-70935.8

Cross-site scripting (XSS) vulnerability in Mambo LaiThai 4.5.4 Security Patch 2 and earlier allows remote attackers to inject arb...

CVE-2006-486010.0

Multiple unspecified vulnerabilities in (1) index.php, (2) minixml.inc.php, (3) doc.inc.php, (4) element.inc.php, (5) node.inc.php...

CVE-2006-7092 Detail & Impact Analysis | CVSS 7.5 (HIGH) | Cyber-Sec.Space | Cyber-Sec.Space