Cross-site scripting (XSS) vulnerability in forum/index.php in FlatNuke 2.5.6 allows remote malicious users to inject arbitrary web script or HTML via the nome parameter in a login operation, a variant of CVE-2005-3306.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
flatnuke flatnuke 2.5.6 |