flatnux flatnux 2009-02-04 vulnerabilities and exploits

(subscribe to this query)

5.1

CVSSv2

PHP remote file inclusion vulnerability in include/flatnux.php in FlatnuX CMS (aka Flatnuke3) 2009-01-27 and 2009-02-04, when register_globals is enabled and magic_quotes_gpc disabled, allows remote malicious users to execute arbitrary PHP code via a URL in the _FNROOTPATH parame...

Flatnux Flatnux 2009-01-27 Flatnux Flatnux 2009-02-04

1 EDB exploit

6.8

CVSSv2

Cross-site request forgery (CSRF) vulnerability in controlcenter.php in FlatnuX CMS 2011 08.09.2 and previous versions allows remote malicious users to hijack the authentication of administrators for requests that add user accounts.

Flatnux Flatnux Flatnux Flatnux 2008-12-11 Flatnux Flatnux 2009-02-04 Flatnux Flatnux 2009-01-27

1 EDB exploit

4.3

CVSSv2

Multiple cross-site scripting (XSS) vulnerabilities in FlatnuX CMS 2011 08.09.2 and previous versions allow remote malicious users to inject arbitrary web script or HTML via a (1) comment to the news, (2) title to the news, or (3) the folder names in a gallery.

Flatnux Flatnux 2009-02-04 Flatnux Flatnux 2009-01-27 Flatnux Flatnux 2008-12-11 Flatnux Flatnux

4.3

CVSSv2

Multiple cross-site scripting (XSS) vulnerabilities in FlatnuX CMS 2012-03.08 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) title_en, (2) summary_en, or (3) body_en parameter in a submitnews action to the news module, a diff...

Flatnux Flatnux 2009-01-27 Flatnux Flatnux Flatnux Flatnux 2008-12-11 Flatnux Flatnux 2011-08-09-2 Flatnux Flatnux 2009-02-04

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook