Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2008-5965

Directory traversal vulnerability in index.php in LokiCMS 0.3.4 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to check for the existence of arbitrary files via a .. (dot dot) in the page parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.021
EPSS Ranking 83.5%
CVSS Severity
CVSS v2 Score 5.0
Products affected by CVE-2008-5965
  • Lokicms » Lokicms » Version: Any
    cpe:2.3:a:lokicms:lokicms:*
  • Lokicms » Lokicms » Version: 0.1.0
    cpe:2.3:a:lokicms:lokicms:0.1.0
  • Lokicms » Lokicms » Version: 0.1.0rc1
    cpe:2.3:a:lokicms:lokicms:0.1.0rc1
  • Lokicms » Lokicms » Version: 0.2.0
    cpe:2.3:a:lokicms:lokicms:0.2.0
  • Lokicms » Lokicms » Version: 0.3.0
    cpe:2.3:a:lokicms:lokicms:0.3.0
  • Lokicms » Lokicms » Version: 0.3.1b1
    cpe:2.3:a:lokicms:lokicms:0.3.1b1
  • Lokicms » Lokicms » Version: 0.3.1b2
    cpe:2.3:a:lokicms:lokicms:0.3.1b2
  • Lokicms » Lokicms » Version: 0.3.2b1
    cpe:2.3:a:lokicms:lokicms:0.3.2b1
  • Lokicms » Lokicms » Version: 0.3.3
    cpe:2.3:a:lokicms:lokicms:0.3.3


Products
Pricing
Contact Us

Shodan ® - All rights reserved