CMS Lokomedia 'downlot.php' Arbitrary File Download Vulnerability Network Vulnerability

Summary

CMS Lokomedia is prone to a vulnerability that lets attackers download arbitrary files. This issue occurs because the application fails to sufficiently sanitize user-supplied input. Exploiting this issue will allow an attacker to view arbitrary files within the context of the application. Information harvested may aid in launching further attacks.

References

http://bukulokomedia.com/home
https://www.securityfocus.com/bid/46915

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

123 Flash Chat Multiple Security Vulnerabilities
Apache Web Server Linefeed Memory Allocation Denial Of Service Vulnerability
Adobe ColdFusion HTTP Response Splitting Vulnerability
aeNovo Database Content Disclosure Vulnerability
7Media Web Solutions EduTrac Directory Traversal Vulnerability

Take action and discover your vulnerabilities