Vulnerability in Nucleus_group Nucleus_cms
CVE-2004-2056
SQL injection vulnerability in action.php in Nucleus CMS 3.01 allows remote attackers to execute arbitrary SQL statements via the itemid parameter.
EPSS: 0.012 (65.2th percentile) — read the EPSS interpretation.
Affected products
- Nucleus_group Nucleus_cms — versions 3.01
- N/a — versions n/a
References
- cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
- cve@mitre.org (vdb-entry, x_refsource_XF)
- cve@mitre.org (Patch, x_refsource_SECUNIA, third-party-advisory)