Description
The com_rss option (rss.php) in (1) Mambo and (2) Joomla! allows remote attackers to cause a denial of service (disk consumption and possibly web-server outage) via multiple requests with different values of the feed parameter.
References (5)
Core 5
Core References
Third Party Advisory mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2006-04/0380.html
Exploit, Vendor Advisory x_refsource_misc
http://www.kapda.ir/advisory-313.html
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/431317/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/26131
URL Repurposed x_refsource_misc
http://irannetjob.com/content/view/209/28/
Scores
EPSS
0.0028
EPSS Percentile
51.8%
Details
CWE
CWE-20
Status
published
Products (2)
joomla/joomla\!
mambo-foundation/mambo
Published
Apr 21, 2006
Tracked Since
Feb 18, 2026