Vulnerabilities (CVE)

Filtered by vendor Nucleuscms Subscribe
Filtered by product Nucleuscms
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-21474 1 Nucleuscms 1 Nucleuscms 2024-11-21 N/A 9.8 CRITICAL
File Upload vulnerability in NucleusCMS v.3.71 allows a remote attacker to execute arbitrary code via the /nucleus/plugins/skinfiles/?dir=rsd parameter.