CVE-2006-2583
Nucleus <3.22 - RCE
Title source: llmDescription
PHP remote file inclusion vulnerability in nucleus/libs/PLUGINADMIN.php in Nucleus 3.22 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[DIR_LIBS] parameter.
Exploits (1)
References (11)
Scores
EPSS
0.0712
EPSS Percentile
91.6%
Details
Status
published
Products (1)
nucleus_group/nucleus_cms
< 3.22
Published
May 25, 2006
Tracked Since
Feb 18, 2026