Vulnerabilities > CVE-2022-36030 - Unspecified vulnerability in Project-Nexus Project Project-Nexus 1.0.1

047910
CVSS 9.8 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
project-nexus-project
critical

Summary

Project-nexus is a general-purpose blog website framework. Affected versions are subject to SQL injection due to a lack of sensitization of user input. This issue has not yet been patched. Users are advised to restrict user input and to upgrade when a new release becomes available.

Vulnerable Configurations

Part Description Count
Application
Project-Nexus_Project
1