Nuclei@* Security Vulnerabilities and Issues — Nuclei@* CVE List

Lucene search

ProjectdiscoveryNuclei*

3 matches found

CVE•added 2024/03/15 8:15 p.m.•53 views

CVE-2024-27920

projectdiscovery/nuclei is a fast and customisable vulnerability scanner based on simple YAML based DSL. A significant security oversight was identified in Nuclei v3, involving the execution of unsigned code templates through workflows. This vulnerability specifically affects users utilizing custom...

7.4CVSS7.4AI score0.00059EPSS

CVE•added 2024/09/04 4:15 p.m.•53 views

CVE-2024-43405

Nuclei is a vulnerability scanner powered by YAML based templates. Starting in version 3.0.0 and prior to version 3.3.2, a vulnerability in Nuclei's template signature verification system could allow an attacker to bypass the signature check and possibly execute malicious code via custom code templ...

7.8CVSS7.7AI score0.02765EPSS

CVE•added 2024/07/17 6:15 p.m.•41 views

CVE-2024-40641

Nuclei is a fast and customizable vulnerability scanner based on simple YAML based DSL. In affected versions it a way to execute code template without -code option and signature has been discovered. Some web applications inherit from Nuclei and allow users to edit and execute workflow files. In thi...

7.4CVSS7.6AI score0.00015EPSS