APP: NUUO CMS Multiple Vulnerabilities
This signature detects attempts to exploit a known vulnerability against NUUO CMS. A successful attack can lead to File Upload and SQL Injection.
Extended Description
NUUO CMS All versions 3.3 and prior the web server application allows injection of arbitrary SQL characters, which can be used to inject SQL into an executing statement and allow arbitrary code execution.
Affected Products
Nuuo nuuo_cms
References
CVE: CVE-2018-18982
Short Name
APP:MISC:NUUO-CMS-MUL-VULN
Severity
Minor
Recommended
False
Recommended Action
None
Category
APP
Keywords
CMS CVE-2018-17936 CVE-2018-18982 Multiple NUUO Vulnerabilities
Release Date
07/22/2021
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3590
Port
TCP/5180
False Positive
Unknown
Vendors
Nuuo
CVSS Score
7.5
6.5