ID de Prueba:	1.3.6.1.4.1.25623.1.0.16315
Categoría:	Web application abuses
Título:	Mambo Site Server XSS and remote arbitrary code execution
Resumen:	An attacker may use the installed version of Mambo Site Server to; perform a cross site scripting attack on this host or execute arbitrary; code through the gallery image uploader under the administrator directory.
Descripción:	Summary: An attacker may use the installed version of Mambo Site Server to perform a cross site scripting attack on this host or execute arbitrary code through the gallery image uploader under the administrator directory. Solution: Upgrade to the latest version of this software. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2003-1204 BugTraq ID: 6571 http://www.securityfocus.com/bid/6571 Bugtraq: 20030110 Mambo Site Server Remote Code Execution (Google Search) http://www.securityfocus.com/archive/1/306206 http://www.osvdb.org/7495 http://www.osvdb.org/7496 http://www.osvdb.org/7497 http://www.osvdb.org/7498 http://www.osvdb.org/7499 http://www.osvdb.org/7500 http://www.osvdb.org/7501 http://www.osvdb.org/7502 http://www.osvdb.org/7503 http://www.osvdb.org/7504 http://www.osvdb.org/7505 XForce ISS Database: mambo-multiple-scripts-xss(11050) https://exchange.xforce.ibmcloud.com/vulnerabilities/11050
Copyright	Copyright (C) 2005 David Maciejak

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.