icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Mambo < 4.6.1 Login Function usercookie Cookie SQL Injection

High

Synopsis

The remote host is vulnerable to a SQL Injection attack.

Description

The remote host is running the Mambo Content Server, an application for generating dynamic content for web servers. The remote application is vulnerable to a flaw where remote attackers can execute arbitrary SQL commands on the database server utilized by Mambo. In order to exploit this flaw, an attacker would only need to send a malformed HTTP query containing SQL commands to the 'Name' field of the 'Submit Weblink' form. Successful exploitation would result in a potential loss of confidentiality, integrity, and availability on the remote database server.

Solution

Upgrade to version 4.6.1 or higher.