CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2022-3975 – NukeViet CMS Data URL Request.php filterAttr cross site scripting
https://notcve.org/view.php?id=CVE-2022-3975
13 Nov 2022 — A vulnerability, which was classified as problematic, has been found in NukeViet CMS. Affected by this issue is the function filterAttr of the file vendor/vinades/nukeviet/Core/Request.php of the component Data URL Handler. The manipulation of the argument attrSubSet leads to cross site scripting. The attack may be launched remotely. Upgrading to version 4.5 is able to address this issue. • https://github.com/nukeviet/nukeviet • CWE-707: Improper Neutralization •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 2CVE-2022-30874
https://notcve.org/view.php?id=CVE-2022-30874
21 Jun 2022 — There is a Cross Site Scripting Stored (XSS) vulnerability in NukeViet CMS before 4.5.02. Se presenta una vulnerabilidad de tipo Cross Site Scripting almacenado (XSS) en NukeViet CMS versiones anteriores a 4.5.02 • https://blog.stmcyber.com/vulns/cve-2022-30874 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 2CVE-2020-21809
https://notcve.org/view.php?id=CVE-2020-21809
29 Jul 2021 — SQL Injection vulnerability in NukeViet CMS module Shops 4.0.29 and 4.3 via the (1) listid parameter in detail.php and the (2) group_price or groupid parameters in search_result.php. Una vulnerabilidad de inyección SQL en el módulo NukeViet CMS Shops versiones 4.0.29 y 4.3 por medio del (1) parámetro listid en el archivo detail.php y los (2) parámetros group_price o groupid en el archivo search_result.php • https://github.com/nukeviet/module-shops/commit/742c0e0f74364f7250c2a69f0a957d4e6317be68 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-21808
https://notcve.org/view.php?id=CVE-2020-21808
29 Jul 2021 — SQL Injection vulnerability in NukeViet CMS 4.0.10 - 4.3.07 via:the topicsid parameter in modules/news/admin/addtotopics.php. Una vulnerabilidad de inyección SQL en NukeViet CMS versiones 4.0.10 - 4.3.07, por medio del parámetro topicsid en el archivo modules/news/admin/addtotopics.php • https://github.com/nukeviet/nukeviet/blob/4.3.08/CHANGELOG.txt#L11 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-7726
https://notcve.org/view.php?id=CVE-2019-7726
31 Dec 2020 — modules/banners/funcs/click.php in NukeViet before 4.3.04 has a SQL INSERT statement with raw header data from an HTTP request (e.g., Referer and User-Agent). El archivo modules/banners/funcs/click.php en NukeViet versiones anteriores a 4.3.04, presenta una sentencia SQL INSERT con datos de encabezado sin procesar de una petición HTTP (por ejemplo, Referer y User-Agent). • https://github.com/nukeviet/nukeviet/blob/4.3.04/CHANGELOG.txt • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-7725
https://notcve.org/view.php?id=CVE-2019-7725
31 Dec 2020 — includes/core/is_user.php in NukeViet before 4.3.04 deserializes the untrusted nvloginhash cookie (i.e., the code relies on PHP's serialization format when JSON can be used to eliminate the risk). El archivo includes/core/is_user.php en NukeViet versiones anteriores a 4.3.04, deserializa la cookie nvloginhash que no es confiable (es decir, el código se basa en el formato de serialización de PHP cuando JSON puede ser usado para eliminar el riesgo). • https://github.com/nukeviet/nukeviet/blob/4.3.04/CHANGELOG.txt • CWE-502: Deserialization of Untrusted Data •
CVSS: 9.1EPSS: 1%CPEs: 1EXPL: 2CVE-2008-5945 – Nukeviet 2.0 - '/admin/login.php' Cookie Authentication Bypass
https://notcve.org/view.php?id=CVE-2008-5945
22 Jan 2009 — Nukeviet 2.0 Beta allows remote attackers to bypass authentication and gain administrative access by setting the admf cookie to 1. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Nukeviet 2.0 Beta permite a atacantes remotos evitar la autentificación prevista y obtener acceso administrativo estableciendo la cookie admf a 1. NOTA: el origen de esta información es desconocido; los detalles se han obtenido únicamente de información de terceros. • https://www.exploit-db.com/exploits/32243 • CWE-287: Improper Authentication •