VULHUB ™

Mambo Site Server has been reported prone to a cross-site scripting vulnerability. It has been reported that certain user supplied URI parameters are not sufficiently sanitized by the Mambo Site Server. As a result of this deficiency an attacker may create a specially crafted URL that includes malicious HTML code passed to the index page used by Mambo Site server. This may allow for theft of cookie-based authentication credentials and other attacks. This vulnerability was reported to affect Mambo Site Server version 4.0.10 it is not currently known if other versions are affected.

Mambo Site Server has been reported prone to a cross-site scripting vulnerability. It has been reported that certain user supplied URI parameters are not sufficiently sanitized by the Mambo Site Server. As a result of this deficiency an attacker may create a specially crafted URL that includes malicious HTML code passed to the index page used by Mambo Site server. This may allow for theft of cookie-based authentication credentials and other attacks. This vulnerability was reported to affect Mambo Site Server version 4.0.10 it is not currently known if other versions are affected.