Mambo OS versions 4.5 and 4.6 exploit written in PHP that insets an administrator user into the database.
a2fc44f4482fa74b878d0564d7eb95973e10a36108e84d5af22116e7d3d80daa
The Mambo Open Source web content management system allows for remote command execution as the webserver user id due to a lack of input validation.
da6f8e308f6903ca98dc9383805abc68a8004be17d4c4787d292645cd9e1a4cb