nucleus_cms CVE Vulnerabilities & CVE List (4)

Products (CPE): — CVEs: 4

nucleus_cms vulnerability overview

Aggregates CVE and security vulnerability intelligence across all nucleus_cms-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Disclosed issues often relate to vendor risk cross-site scripting; exposure may include vendor impact session compromise in vendor surface software deployment and vendor surface production workloads contexts.

Vulnerability distribution trend (last 24 months)

Showing 14 of 4 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2008-4446 Cross-site scripting (XSS) vulnerability in Nucleus EUC-JP 3.31 SP1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. [email protected] 4.3 0.86% 2008-10-06 2026-04-23
CVE-2008-0497 Cross-site scripting (XSS) vulnerability in action.php in Nucleus CMS 3.31 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO, which is not quoted when processing PHP_SELF. [email protected] 4.3 0.86% 2008-01-30 2026-04-23
CVE-2007-5429 Cross-site scripting (XSS) vulnerability in index.php in Nucleus 3.01 allows remote attackers to inject arbitrary web script or HTML via the archive parameter. [email protected] 4.3 0.57% 2007-10-12 2026-04-23
CVE-2006-6920 Cross-site scripting (XSS) vulnerability in Nucleus before 3.24 allows remote attackers to inject arbitrary web script or HTML via unknown vectors, possibly involving (1) lib/ADMIN.php and (2) lib/SKIN.php. [email protected] 6.8 1.57% 2007-01-11 2026-04-23
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence