Kr4L BeNiM

1 exploit Active since Dec 2011
CVE-2011-2917 EXPLOITDB text WRITEUP
Mambo < 4.6.5 - SQL Injection via zorder Parameter
SQL injection vulnerability in administrator/index2.php in Mambo CMS 4.6.5 and earlier allows remote attackers to execute arbitrary SQL commands via the zorder parameter.