From Mambo website and Christophe Garault : Security Patch for All Mambo 4.5.x Versions : Under various (and differing) circumstances, multiple vulnerabilities exist that allow an attacker to steal cookie information, initiatiate XSS and SQL injection attacks. Download the patch to upgrade Mambo to version 4.5.x.2 from mamboforge.net : http://mamboforge.net/frs/?group_id=5
4.5.2.2 in cvs.
Thx Aaron. Mambo is not stable on any arches -> Closing.