Product
nuuo cms
7 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2018-18982
CVE-2018-17936
CVE-2018-17934
CVE-2018-17894
CVE-2018-17892
CVE-2018-17890
CVE-2018-17888
<= 3.3
NUUO CMS All versions 3.3 and prior the web server application allows injection of arbitrary SQL characters, which can be used to
<= 3.3
NUUO CMS All versions 3.3 and prior the application allows the upload of arbitrary files that can modify or overwrite configuratio
<= 3.3
NUUO CMS All versions 3.3 and prior the application allows external input to construct a pathname that is able to be resolved outs
<= 3.1
NUUO CMS all versions 3.1 and prior, The application creates default accounts that have hard-coded passwords, which could allow an
<= 3.1
NUUO CMS all versions 3.1 and prior, The application implements a method of user account control that causes standard account secu
<= 3.1
NUUO CMS all versions 3.1 and prior, The application uses insecure and outdated software components for functionality, which could
<= 3.1
NUUO CMS all versions 3.1 and prior, The application uses a session identification mechanism that could allow attackers to obtain