Nucleus CMS 3.65 Cross Site Scripting

2015-06-26T00:00:00
ID PACKETSTORM:132461
Type packetstorm
Reporter Sharankumar Somana
Modified 2015-06-26T00:00:00

Description

                                        
                                            `​# Exploit Title: Persistent Cross Site Scripting Vulnerability in  
nucleuscms  
# Date: 25 July 2015  
# Exploit Author: sharan kumar somana  
# Vendor Homepage: http://www.nucleuscms.org  
# Software Link:  
http://sourceforge.net/projects/nucleuscms/?source=typ_redirect  
# Version: 3.65  
# Tested on: Windows 7  
  
#################################################  
  
nucleuscms is vulnerable for a Persistent Cross Site Scripting  
Vulnerability.  
The vulnerability affects 'title' parameter while adding a new item  
  
#################################################  
`