Vulnerabilities > Nucleus Group

DATE	CVE	VULNERABILITY TITLE	RISK
2010-06-17	CVE-2010-2314	Code Injection vulnerability in Edmondhui.Homeip NP Twitter 0.8/0.9 PHP remote file inclusion vulnerability in nucleus/plugins/NP_Twitter.php in the NP_Twitter Plugin 0.8 and 0.9 for Nucleus, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the DIR_PLUGINS parameter. network edmondhui-homeip nucleus-group CWE-94	6.8
2009-03-17	CVE-2009-0929	Path Traversal vulnerability in Nucleus Group Nucleus CMS Directory traversal vulnerability in the media manager in Nucleus CMS before 3.40 allows remote attackers to read arbitrary files via unknown vectors. network low complexity nucleus-group CWE-22	5.0
2006-05-25	CVE-2006-2583	Remote File Include vulnerability in Nucleus CMS GLOBALS[DIR_LIBS] Parameter PHP remote file inclusion vulnerability in nucleus/libs/PLUGINADMIN.php in Nucleus 3.22 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[DIR_LIBS] parameter. network high complexity nucleus-group	5.1
2004-12-31	CVE-2004-2056	SQL-Injection vulnerability in Nucleus Group Nucleus CMS 3.01 SQL injection vulnerability in action.php in Nucleus CMS 3.01 allows remote attackers to execute arbitrary SQL statements via the itemid parameter. network low complexity nucleus-group	7.5

Vulnerabilities > Nucleus Group {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Nucleus Group"}]}