Vinades NukeViet 跨站脚本漏洞

Vinades NukeViet is an open-source content management system CMS developed by the Vietnamese company Vinades. Versions of Vinades NukeViet 4.5.07 and earlier had a cross-site scripting vulnerability. This vulnerability stemmed from insufficient input cleansing on the server side, which could lead...

CVE-2025-8772

A vulnerability, which was classified as problematic, has been found in Vinades NukeViet up to 4.5.06. This issue affects some unknown processing of the file /admin/index.php?language=en=upload of the component Module Handler. The manipulation leads to server-side request forgery. The attack may ...

CVE-2025-8772

A vulnerability, which was classified as problematic, has been found in Vinades NukeViet up to 4.5.06. This issue affects some unknown processing of the file /admin/index.php?language=en&nv=upload of the component Module Handler. The manipulation leads to server-side request forgery. The attack m...

CVE-2025-8772 Vinades NukeViet Module index.php server-side request forgery

A vulnerability, which was classified as problematic, has been found in Vinades NukeViet up to 4.5.06. This issue affects some unknown processing of the file /admin/index.php?language=en&nv=upload of the component Module Handler. The manipulation leads to server-side request forgery. The attack m...

CVE-2025-8772 Vinades NukeViet Module index.php server-side request forgery

A vulnerability, which was classified as problematic, has been found in Vinades NukeViet up to 4.5.06. This issue affects some unknown processing of the file /admin/index.php?language=en&nv=upload of the component Module Handler. The manipulation leads to server-side request forgery. The attack m...

CVE-2025-8772

Vinades NukeViet up to version 4.5.06 contains a server-side request forgery (SSRF) in the Module Handler’s file path /admin/index.php?language=en&nv=upload. A remote attacker could exploit this via unknown processing of that file path, with exploitation reportedly disclosed publicly. Several sou...

Vinades NukeViet 代码问题漏洞

Vinades NukeViet is a content management system from Vinades Vietnam. A code issue vulnerability exists in Vinades NukeViet version 4.5.06 and earlier, which stems from a server-side request forgery issue in file /admin/index.php...

PT-2025-32453 · Unknown · Vinades Nukeviet

Name of the Vulnerable Software and Affected Versions: Vinades NukeViet versions up to 4.5.06 Description: A problematic vulnerability has been identified in Vinades NukeViet. The issue is related to unknown processing of the file /admin/index.php?language=en&nv=upload within the Module Handler...

Vinades NukeViet Security Breach

Vinades NukeViet is an open source content management system CMS from Vinades Vietnam. A security vulnerability exists in Vinades NukeViet v.4.5 and earlier versions, nukeviet-egov v.1.2.02 and earlier versions, which stems from the presence of a deserialization vulnerability. An attacker can...

Vinades NukeViet Security Breach

Vinades NukeViet is an open source content management system CMS from Vinades Vietnam. A security vulnerability exists in Vinades NukeViet v.4.5 and earlier versions, nukeviet-egov v.1.2.02 and earlier versions. An attacker can exploit this vulnerability to execute arbitrary code via the...

Vinades NukeViet 安全漏洞

Vinades NukeViet is an open source Content Management System CMS from Vinades Vietnam. A security vulnerability exists in Vinades NukeViet CMS, which originates from an affected filterAttr function in the vendor/vinades/nukeviet/Core/Request.php file of the Data URL Handler component, where...

Vinades NukeViet 跨站脚本漏洞

Vinades NukeViet is an open source Content Management System CMS from Vinades Vietnam. A cross-site scripting vulnerability exists in Vinades NukeViet CMS versions prior to 4.5.02. There is no information about this vulnerability at this time, so please stay tuned to CNNVD or vendor announcements...

Vinades NukeViet SQL注入漏洞

Vinades NukeViet CMS is an open source content management system CMS from Vinades Vietnam.Vinades NukeViet CMS is vulnerable to SQL injection, which originates from the topicsid parameter of the product modules/news/admin/addtotopics.php page Fails to filter input special characters, and an...

NukeViet SQL Injection Vulnerability

Vinades NukeViet is an open source content management system CMS from Vinades Vietnam.Vinades NukeViet is vulnerable to a SQL injection vulnerability that originates from a SQL INSERT statement containing raw header data e.g., Referer and User-Agent from HTTP requests. No detailed vulnerability...

Vinades NukeViet SQL注入漏洞

Vinades NukeViet is an open source content management system CMS from Vinades Vietnam.Vinades NukeViet is vulnerable to a SQL injection vulnerability that originates from a SQL INSERT statement containing raw header data e.g., Referer and User-Agent from HTTP requests. No detailed vulnerability...