Re: Mambo 4.6.3 Path Disclosure, XSS , XSRF, DOS

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: Mambo 4.6.3 Path Disclosure, XSS , XSRF, DOS
From: jamboomla@xxxxxxxxx
Date: 27 Feb 2008 12:04:18 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

These vulnerabilities in the MOStlyCE editor were fixed and a new release made 
within 2 days of the Mambo Team being notified of the vulnerabilities. 
http://forum.mambo-foundation.org/showthread.php?t=10158

Please Note: it is useful to notify Mambo whenever any risk is identified. 
Mambo is NOT at mamboserver.com. The project home is 
http://mambo-foundation.org.

Prev by Date: CFP - ekoparty 4th edition
Next by Date: Buffer-overflow in the passwords handling of Trend Micro OfficeScan 8.0 and possibly other products
Previous by thread: Mambo 4.6.3 Path Disclosure, XSS , XSRF, DOS
Next by thread: [ GLSA 200801-14 ] Blam: User-assisted execution of arbitrary code
Index(es):
- Date
- Thread