Nucleus CMS Multiple Vulnerabilities
High Nessus Network Monitor Plugin ID 2423
SynopsisThe remote web server contains a script that is vulnerable to a SQL injection attack.
DescriptionThe remote host is running Nucleus CMS, an open-source content management system.
The remote version of this software is vulnerable to various flaws that may allow an attacker to perform a cross-site scripting attack using the remote host and to perform a SQL injection attack on the remote database.
SolutionUpgrade or patch according to vendor recommendations.