Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-2056

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-2056
Last Modified 05 Sep 2008 04:43:05
Published 31 Dec 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-2056

Summary

SQL injection vulnerability in action.php in Nucleus CMS 3.01 allows remote attackers execute arbitrary SQL statements via the itemid parameter.

Vulnerable Systems

Application

  • Nucleus Group Nucleus Cms 3.01


References

SECUNIA - 13136

BUGTRAQ - 20040725 NucleusCMS 3.01 SQL Injection Vulnerability

XF - nucleus-sql-injection(18002)


Last Updated: 27 May 2016 10:39:18