Summary
An attacker may use the installed version of Mambo Site Server to perform a cross site scripting attack on this host or execute arbitrary code through the gallery image uploader under the administrator directory.
Solution
Upgrade to the latest version of this software.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2003-1204 -
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Apache Struts Showcase Multiple Persistence Cross-Site Scripting Vulnerabilities
- Adobe JRun Management Console Multiple Vulnerabilities
- Apache Archiva Cross Site Request Forgery Vulnerability
- Apache Roller 'q' Parameter Cross Site Scripting Vulnerability
- Apache ActiveMQ 'Cron Jobs' Cross Site Scripting Vulnerability