nukeviet/nukeviet vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-55372Highnukeviet/nukeviet: NukeViet: Pre-authentication SSRF via X-Forwarded-HostCVE-2026-54065Highnukeviet/nukeviet: NukeViet: Path Traversal to Arbitrary File Deletion in Edit Comment FunctionCVE-2026-54064Highnukeviet/nukeviet: NukeViet: Multiple Anti-XSS Filter Bypasses Leading to Stored XSS in News ModuleCVE-2026-49259Highnukeviet/nukeviet: NukeViet: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')CVE-2026-48118Highnukeviet/nukeviet: NukeViet: Unauthenticated Reflected XSS in Comment ModuleCVE-2026-41147Highnukeviet/nukeviet: NukeViet CMS: Stored Cross-Site Scripting (XSS) via insufficient server-side input sanitization in Request classCVE-2024-36528Highnukeviet/nukeviet: nukeviet Deserialization of Untrusted Data vulnerabilityCVE-2022-3975Mediumnukeviet/nukeviet: NukeView CMS vulnerable to Cross-site ScriptingCVE-2022-30874Mediumnukeviet/nukeviet: Cross-site Scripting in NukeViet CMSCVE-2020-21809Criticalnukeviet/nukeviet: NukeViet SQL Injection vulnerabilityCVE-2020-21808Criticalnukeviet/nukeviet: NukeViet SQL Injection vulnerability via topicsid parameterCVE-2020-22765Mediumnukeviet/nukeviet: NukeViet Cross-site Scripting via the editor in the News moduleCVE-2020-13156Mediumnukeviet/nukeviet: NukeViet Cross-Site Request Forgery (CSRF)CVE-2020-13155Highnukeviet/nukeviet: NukeViet Cross-Site Request Forgery (CSRF)CVE-2020-13157Mediumnukeviet/nukeviet: NukeViet Cross-Site Request Forgery (CSRF)CVE-2019-7725Criticalnukeviet/nukeviet: Deserialization of Untrusted Data in NukeVietCVE-2019-7726Criticalnukeviet/nukeviet: SQL Injection in NukeViet

Stop the waste.
Protect your environment with Kodem.