Lucene search
K

5 matches found

Cvelist
Cvelist
added 2008/11/04 1:0 a.m.23 views

CVE-2008-4913

Directory traversal vulnerability in admin.php in LokiCMS 0.3.3 and earlier allows remote attackers to delete arbitrary files via a .. dot dot in the delete parameter...

6.8AI score0.02686EPSS
Exploits1References5
CVE
CVE
added 2008/11/04 1:0 a.m.43 views

CVE-2008-4913

CVE-2008-4913: LokiCMS (versions 0.3.3 and earlier) contains a directory traversal flaw in admin.php where an attacker can use a .. in the delete parameter to delete arbitrary files. The connected documents confirm the affected product/version and the underlying cause (directory traversal) but do...

5CVSS6.8AI score0.02686EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2008/11/04 12:57 a.m.18 views

CVE-2008-4913

Directory traversal vulnerability in admin.php in LokiCMS 0.3.3 and earlier allows remote attackers to delete arbitrary files via a .. dot dot in the delete parameter...

5CVSS6.8AI score0.02686EPSS
Exploits1References5
Prion
Prion
added 2008/11/04 12:57 a.m.13 views

Directory traversal

Directory traversal vulnerability in admin.php in LokiCMS 0.3.3 and earlier allows remote attackers to delete arbitrary files via a .. dot dot in the delete parameter...

5CVSS7.3AI score0.02686EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2008/04/17 4:0 p.m.43 views

CVE-2008-1860

LokiCMS versions 0.3.3 and earlier are affected by a static code injection vulnerability in admin.php, allowing remote attackers to inject arbitrary PHP into includes/Config.php via the default parameter. The issue arises from the underlying code path described in CVE-2008-1860 and is rated with ...

9.3CVSS7.3AI score0.03048EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder