CSOonline4d
Open source vulnerability scanner found with a serious vulnerability in its own code
The flaw could allow attackers to bypass Nuclei’s template signature verification process to inject malicious codes into host ...
Bleeping Computer7d
Nuclei flaw bypasses template signature checks to execute commands
Another issue is how Nuclei handles multiple # digest: signature lines, as the process only checks the first occurrence of # digest: in a template, ignoring any additional ones found later in the ...
Bleeping Computer7d
Nuclei flaw lets malicious templates bypass signature verification
Another issue is how Nuclei handles multiple # digest: signature lines, as the process only checks the first occurrence of # digest: in a template, ignoring any additional ones found later in the ...
The Hacker News7d
Researchers Uncover Nuclei Vulnerability Enabling Signature Bypass and Code Execution
CVE-2024-43405 in Nuclei allows signature bypass, enabling arbitrary code execution. Update to version 3.3.7 for critical ...
SecurityWeek5d
Code Execution Flaw Found in Nuclei Vulnerability Scanner
A vulnerability in Nuclei's template signature verification system could have allowed attackers to execute arbitrary code.