Nucleus Group: >> Nucleus Cms >> 3.01 Security Vulnerabilities
Directory traversal vulnerability in the media manager in Nucleus CMS before 3.40 allows remote attackers to read arbitrary files via unknown vectors.
CVSS Score
5.0
EPSS Score
0.003
Published
2009-03-17
SQL injection vulnerability in action.php in Nucleus CMS 3.01 allows remote attackers to execute arbitrary SQL statements via the itemid parameter.
CVSS Score
7.5
EPSS Score
0.005
Published
2004-12-31