Vulnerabilities > Bukulokomedia

DATE	CVE	VULNERABILITY TITLE	RISK
2010-05-24	CVE-2010-2019	SQL Injection vulnerability in Bukulokomedia Lokomedia CMS 1.4.1 SQL injection vulnerability in downlot.php in Lokomedia CMS 1.4.1, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the file parameter. network bukulokomedia CWE-89	6.8
2010-05-24	CVE-2010-2018	Path Traversal vulnerability in Bukulokomedia Lokomedia CMS 1.4.1/2.0 Directory traversal vulnerability in downlot.php in Lokomedia CMS 1.4.1 and 2.0 allows remote attackers to read arbitrary files via a .. network low complexity bukulokomedia CWE-22	5.0
2010-05-24	CVE-2010-2017	Cross-Site Scripting vulnerability in Bukulokomedia Lokomedia CMS 1.4.1/2.0 Cross-site scripting (XSS) vulnerability in hasil-pencarian.html in Lokomedia CMS 1.4.1 and 2.0 allows remote attackers to inject arbitrary web script or HTML via the kata parameter. network bukulokomedia CWE-79	4.3

Vulnerabilities > Bukulokomedia {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Bukulokomedia"}]}