PT-2023-11588 · Unknown · Nucleus Cms

Name of the Vulnerable Software and Affected Versions: NucleusCMS version 3.71 Description: The issue allows a remote attacker to execute arbitrary code. This is achieved via the "https://example.com/nucleus/plugins/skinfiles/?dir=rsd" API endpoint, where the dir parameter is set to rsd...

Nucleus CMS v.3.51 (DIR_LIBS) Multiple Vulnerability

Vulnerability: Nucleus v3.51 other or lower version may also be affected Vendor: http://nucleuscms.org/ Category: Input Validation Error Impact: rfi/lfi Multiple Vulnerability Details: Multiple Vulnerability has been found in Nucleus v3.51 because it fails to sufficiently sanitize user-supplied...