Nucleus “itemid” SQL Injection Vulnerability

“aCiDBiTS has reported a vulnerability in Nucleus, allowing malicious people to conduct SQL injection attacks….This has been reported to affect version 3.01. Prior versions may also be affected. Solution: Edit the source code to ensure that input is properly sanitised.” Nucleus has released version 3.1 in response to this vulnerability – the same day the vulnerability advisory was released.