icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Nucleus CMS Multiple Vulnerabilities

High

Synopsis

The remote web server contains a script that is vulnerable to a SQL injection attack.

Description

The remote host is running Nucleus CMS, an open-source content management system. The remote version of this software is vulnerable to various flaws that may allow an attacker to perform a cross-site scripting attack using the remote host and to perform a SQL injection attack on the remote database.

Solution

Upgrade or patch according to vendor recommendations.