Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
flatnuke flatnuke vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-0268
Direct code injection vulnerability in FlatNuke 2.5.1 allows remote malicious users to execute arbitrary PHP code by placing the code into the url_avatar field.
Flatnuke Flatnuke 2.5.1
NA
CVE-2007-5771
Flatnuke 3 (aka FlatnuX) allows remote malicious users to obtain administrative access via a myforum%00 cookie.
Flatnuke3 Flatnuke3
1 EDB exploit
NA
CVE-2007-5772
Direct static code injection vulnerability in the download module in Flatnuke 3 allows remote authenticated administrators to inject arbitrary PHP code into a description.it.php file in a subdirectory of Download/ by saving a description and setting fneditmode to 1. NOTE: unauthe...
Flatnuke3 Flatnuke3
1 EDB exploit
NA
CVE-2007-5773
Cross-site request forgery (CSRF) vulnerability in index.php in the File Manager module in Flatnuke 3 allows remote malicious users to perform certain actions as administrators via requests containing the pathname in the dir parameter and the filename in the ffile parameter.
Flatnuke3 Flatnuke3
1 EDB exploit
NA
CVE-2007-5774
index.php in the File Manager module in Flatnuke 3 allows remote malicious users to obtain sensitive information via an invalid argumentname parameter in a disc op action, which reveals the path in an error message.
Flatnuke3 Flatnuke3
1 EDB exploit
NA
CVE-2005-3307
Directory traversal vulnerability in index.php for FlatNuke 2.5.6 allows remote malicious users to read arbitrary files via ".." sequences in the (1) user parameter in a profile operation or (2) quale parameter in a newtopic operation.
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firewall
CVE-2024-35649
stored XSS
CVE-2022-28654
CVE-2020-35153
CVE-2024-27348
CVE-2022-28652
local users
CVE-2017-3506
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3