Cross-site scripting (XSS) vulnerability in Nucleus prior to 3.24 allows remote malicious users to inject arbitrary web script or HTML via unknown vectors, possibly involving (1) lib/ADMIN.php and (2) lib/SKIN.php.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
nucleus cms nucleus cms 3.0 |
||
nucleus cms nucleus cms 3.23 |
||
nucleus cms nucleus cms 3.1 |
||
nucleus cms nucleus cms 3.2 |
||
nucleus cms nucleus cms 3.21 |
||
nucleus cms nucleus cms 3.22 |
||
nucleus cms nucleus cms 3.0_rc |
||
nucleus cms nucleus cms 3.01 |
Vulmon