Vulnerabilities > Nucleus CMS > Nucleus CMS > 3.31
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-01-30 | CVE-2008-0497 | Cross-Site Scripting vulnerability in Nucleus CMS Nucleus CMS 3.31 Cross-site scripting (XSS) vulnerability in action.php in Nucleus CMS 3.31 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO, which is not quoted when processing PHP_SELF. | 4.3 |