Nucleuscms » Nucleus Cms : Security Vulnerabilities, CVEs, (XSS)
Nucleus CMS 3.70 allows HTML Injection via the index.php body parameter.
Max CVSS
6.5
EPSS Score
0.05%
Published
2018-12-10
Updated
2019-10-03
Cross-site scripting (XSS) vulnerability in Nucleus CMS allows remote attackers to inject arbitrary web script or HTML via the title parameter when adding a new item.
Max CVSS
4.3
EPSS Score
0.17%
Published
2015-07-08
Updated
2019-02-26
2 vulnerabilities found