CVE-2013-2565

A vulnerability in Mambo CMS v4.6.5 where the scripts thumbs.php, editorFrame.php, editor.php, images.php, manager.php discloses the root path of the webserver.
References
Link Resource
http://www.vapidlabs.com/advisory.php?v=75 Exploit Third Party Advisory
http://sourceforge.net/projects/mambo/ Product
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:mambo-foundation:mambo_cms:4.6.5:*:*:*:*:*:*:*

Information

Published : 2019-02-15 13:29

Updated : 2019-04-15 12:55


NVD link : CVE-2013-2565

Mitre link : CVE-2013-2565


JSON object : View

CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Advertisement

dedicated server usa

Products Affected

mambo-foundation

  • mambo_cms