CVE-2006-3262

Mambo < 4.6 - SQL Injection via Weblinks Title Parameter

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2006-3262. PoCs published by rgod.

AI-analyzed exploit summary This exploit targets a blind SQL injection vulnerability in Mambo CMS <= 4.6rc1 via the 'Weblinks' component. It extracts admin credentials by brute-forcing character-by-character using ASCII values and SQL UNION-based queries.

Description

SQL injection vulnerability in the Weblinks module (weblinks.php) in Mambo 4.6rc1 and earlier allows remote attackers to execute arbitrary SQL commands via the title parameter.

Exploits (2)

exploitdb WORKING POC VERIFIED

by rgod · phpwebappsphp

https://www.exploit-db.com/exploits/1941

View Code ZIP pw:eip

This exploit targets a blind SQL injection vulnerability in Mambo CMS <= 4.6rc1 via the 'Weblinks' component. It extracts admin credentials by brute-forcing character-by-character using ASCII values and SQL UNION-based queries.

Classification

Working Poc 95%

Attack Type

Sqli

Complexity

Moderate

Reliability

Reliable

Target: Mambo CMS <= 4.6rc1

Auth required

Prerequisites: Valid user account credentials · Network access to the target · Weblinks component enabled

MITRE ATT&CK

T1189 - Drive-by Compromise T1505 - Server Software Component T1552 - Unsecured Credentials

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by rgod · phpwebappsphp

https://www.exploit-db.com/exploits/1920

View Code ZIP pw:eip

This exploit leverages a blind SQL injection vulnerability in Mambo CMS <= 4.6rc1 via the 'Weblinks' feature. It uses time-based techniques (MySQL benchmark()) to extract admin credentials, bypassing authentication.

Classification

Working Poc 95%

Attack Type

Sqli

Complexity

Moderate

Reliability

Reliable

Target: Mambo CMS <= 4.6rc1

Auth required

Prerequisites: Valid user account credentials · Access to the 'Submit Weblink' feature

MITRE ATT&CK

T1189 - Drive-by Compromise T1505 - Server Software Component

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (9)

Core 9

Core References

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2006/2416

Third Party Advisory third-party-advisory x_refsource_sreason

http://securityreason.com/securityalert/1158

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://securitytracker.com/id?1016334

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/26624

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/437496/100/100/threaded

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/18492

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/20745

Exploit x_refsource_misc

http://retrogod.altervista.org/mambo_46rc1_sql.html

Various Sources x_refsource_confirm

http://www.mamboserver.com/?option=com_content&task=view&id=207

Scores

EPSS 0.0244

EPSS Percentile 82.2%

Details

Status published

Products (1)

mambo/mambo < 4.6

Published Jun 27, 2006

Tracked Since Feb 18, 2026