Vulnerabilities > Lokicms > Lokicms > 0.3.2b1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-01-26 | CVE-2008-5965 | Path Traversal vulnerability in Lokicms Directory traversal vulnerability in index.php in LokiCMS 0.3.4 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to check for the existence of arbitrary files via a .. | 5.0 |
2008-11-04 | CVE-2008-4913 | Path Traversal vulnerability in Lokicms Directory traversal vulnerability in admin.php in LokiCMS 0.3.3 and earlier allows remote attackers to delete arbitrary files via a .. | 5.0 |
2008-04-17 | CVE-2008-1860 | Code Injection vulnerability in Lokicms Static code injection vulnerability in admin.php in LokiCMS 0.3.3 and earlier allows remote attackers to inject arbitrary PHP code into includes/Config.php via the default parameter. | 9.3 |