Mini-Nuke Cms System vulnerabilities
2 known vulnerabilities affecting mini-nuke/cms_system.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2006-0199P3HIGHCVSS 7.5PoC≤ 1.8.22006-01-13
CVE-2006-0199 [HIGH] CWE-89 CVE-2006-0199: SQL injection vulnerability in news.asp in Mini-Nuke CMS System 1.8.2 and earlier allows remote atta
SQL injection vulnerability in news.asp in Mini-Nuke CMS System 1.8.2 and earlier allows remote attackers to execute arbitrary SQL commands via the hid parameter.
nvd
CVE-2006-0203P4MEDIUMCVSS 5.0≤ 1.8.22006-01-13
CVE-2006-0203 [MEDIUM] CWE-20 CVE-2006-0203: membership.asp in Mini-Nuke CMS System 1.8.2 and earlier does not verify the old password when chang
membership.asp in Mini-Nuke CMS System 1.8.2 and earlier does not verify the old password when changing a password, which allows remote attackers to change the passwords of other members via a lostpassnew action with a modified x parameter.
nvd