Earlier today, Team Mambo was alerted to a security vulnerability in the search component and module that generates a large number of queries if certain strings are input. This creates a major impact on the server's available resources and can lead to the site going down. While we intend to have two new releases out within this next week, the search vulnerability is of enough concern that we have just released a patch. Discussions
This vulnerability affects all versions of Mambo. It may also affect other CMS that are based on the Mambo code.
If you are using Mambo 4.5.5, please go here and download the patch file:
For all versions of Mambo 4.6, please download this file:
This is not an upgrade. The files contained in the release will overwrite and replace existing files. To install, either unzip locally and upload via ftp, or upload the patch and unzip on your server through your server control panel, such as cPanel.
We urge all Mambo users to apply this patch as soon as possible.
|There are no threads.
Web Hosting provided by Network