Nucleus Group Nucleus Cms — known CVE vulnerabilities
Every CVE whose affected-product data names Nucleus Group Nucleus Cms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2006-3136 — CVSS 9.8 (critical): Multiple PHP remote file inclusion vulnerabilities in Nucleus 3.23 allow remote attackers to execute arbitrary PHP code via a URL the…
CVE-2004-2056 — CVSS 7.5 (high): SQL injection vulnerability in action.php in Nucleus CMS 3.01 allows remote attackers to execute arbitrary SQL statements via the itemid…
CVE-2006-2583 — CVSS 5.1 (medium): PHP remote file inclusion vulnerability in nucleus/libs/PLUGINADMIN.php in Nucleus 3.22 and earlier allows remote attackers to execute…
CVE-2009-0929 — CVSS 5.0 (medium): Directory traversal vulnerability in the media manager in Nucleus CMS before 3.40 allows remote attackers to read arbitrary files via…