Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2008-01-15	CVE-2008-0261	Resource Management Errors vulnerability in Mambo Open Source Unspecified vulnerability in the search component and module in Mambo 4.5.x and 4.6.x allows remote attackers to cause a denial of service (query flood) via unspecified vectors. network low complexity mambo CWE-399	5.0
2004-12-31	CVE-2004-2072	Cross-Site Scripting vulnerability in Mambo Open Source 4.6 Cross-site scripting (XSS) vulnerability in index.php for Mambo Open Source 4.6, and possibly earlier versions, allows remote attackers to execute script on other clients via the Itemid parameter. network mambo	6.8
2004-09-18	CVE-2004-1692	Input Validation vulnerability in Mambo Open Source 4.51.0.9 Cross-site scripting (XSS) vulnerability in index.php in Mambo 4.5 (1.0.9) allows remote attackers to inject arbitrary web script or HTML via the (1) Itemid, (2) mosmsg, or (3) limit parameters. network mambo	4.3
2004-03-16	CVE-2004-1825	Cross-Site Scripting vulnerability in Mambo Open Source 4.51.0.0/4.51.0.1 Cross-site scripting (XSS) vulnerability in index.php in Mambo Open Source 4.5 stable 1.0.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) return or (2) mos_change_template parameters. network mambo	4.3