EUVD-2020-14246

Malware in sbrugna...

CVE-2020-21474

File Upload vulnerability in NucleusCMS v.3.71 allows a remote attacker to execute arbitrary code via the /nucleus/plugins/skinfiles/?dir=rsd parameter...

CVE-2020-21474

File Upload vulnerability in NucleusCMS v.3.71 allows a remote attacker to execute arbitrary code via the /nucleus/plugins/skinfiles/?dir=rsd parameter...

Unrestricted file upload

File Upload vulnerability in NucleusCMS v.3.71 allows a remote attacker to execute arbitrary code via the /nucleus/plugins/skinfiles/?dir=rsd parameter...

CVE-2020-21474

File Upload vulnerability in NucleusCMS v.3.71 allows a remote attacker to execute arbitrary code via the /nucleus/plugins/skinfiles/?dir=rsd parameter...

CVE-2020-21474

File Upload vulnerability in NucleusCMS v.3.71 allows a remote attacker to execute arbitrary code via the /nucleus/plugins/skinfiles/?dir=rsd parameter...

CVE-2020-21474

CVE-2020-21474 in NucleusCMS 3.71 is a file upload vulnerability in the skinfiles endpoint ( /nucleus/plugins/skinfiles/?dir=rsd ) that allows a remote attacker to execute arbitrary code. The issue stems from the /skinfiles/ parameter handling, enabling arbitrary code execution on the affected sy...

PT-2023-11588 · Unknown · Nucleus Cms

Name of the Vulnerable Software and Affected Versions: NucleusCMS version 3.71 Description: The issue allows a remote attacker to execute arbitrary code. This is achieved via the "https://example.com/nucleus/plugins/skinfiles/?dir=rsd" API endpoint, where the dir parameter is set to rsd...

NucleusCMS Change Management Configuration CSRF vulnerability-vulnerability warning-the black bar safety net

Vulnerability description: NucleusCMS Change Management Configuration CSRF vulnerability Nucleus is a system for managing one or more blog tools. It uses PHP4 to develop and requires MySQL database support. Nucleus has support for multiple writing, to support the first preview and then submit, th...

NucleusCMS 3.64 Cross Site Request Forgery

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...

NucleusCMS v3.64 Multiple (CSRF) Vulnerabilities

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

Nucleus 3.61 - Multiple Remote File Inclusions

Nucleus v3.61 === Multiple Remote File Include By n0n0x Homepage: http://priasantai.uni.cc/ Download script :http://sourceforge.net/projects/nucleuscms/ ========================================= nucleus3.61/action.php?DIRLIBS=y0ur g4y sh3ll????????????? 13. / 14. File containing actions that can ...

NucleusCMS/Blog:CMS/PunBB未明远程文件包含漏洞

CMS/Blog:CMS/PunBB是基于WEB的BLOG系统和论坛系统。CMS/Blog:CMS/PunBB对用户提交的URI参数缺少充分过滤，远程攻击者可以利用这个漏洞以WEB进程权限在系统上执行任意命令。目前没有详细漏洞细节提供 PunBB PunBB 1.0-1.1.4/Nucleus CMS 3.0-3.0 RC/BLOG:CMS 3.0-3.1.3 厂商补丁：BLOG:CMS--------目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：BLOG:CMS Upgrade BLOG:CMS...