3 matches found
CVE-2006-3136
CVE-2006-3136 affects Nucleus CMS 3.23 and reports multiple PHP remote file inclusion vulnerabilities. The issue allows an attacker to trigger arbitrary PHP code execution by supplying a URL via the DIR_LIBS parameter in the affected endpoints: path/action.php and files under path/nucleus includi...
CVE-2006-2595
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-2583. Reason: This candidate is a duplicate of CVE-2006-2583. Notes: All CVE users should reference CVE-2006-2583 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...
CVE-2006-2583
CVE-2006-2583 is a PHP remote file inclusion vulnerability in Nucleus CMS (affected: Nucleus 3.22 and earlier). It allows remote attackers to execute arbitrary PHP code by supplying a URL via the GLOBALS[DIR_LIBS] parameter in nucleus/libs/PLUGINADMIN.php. Related records note this as a reproduci...