VYPR

Nubuilder

by Nusoftware

CVEs (2)

  • CVE-2010-2850Jul 25, 2010
    risk 0.04cvss epss 0.08

    Directory traversal vulnerability in productionnu2/fileuploader.php in nuBuilder 10.04.20, and possibly other versions before 10.07.12, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the dir parameter.

  • CVE-2010-2849Jul 25, 2010
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in productionnu2/nuedit.php in nuBuilder 10.04.20, and possibly other versions before 10.07.12, allows remote attackers to inject arbitrary web script or HTML via the f parameter.