Directory traversal vulnerability in index.php for FlatNuke 2.5.6 allows remote malicious users to read arbitrary files via ".." sequences in the (1) user parameter in a profile operation or (2) quale parameter in a newtopic operation.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|