Cross-site request forgery (CSRF) vulnerability in index.php in the File Manager module in Flatnuke 3 allows remote malicious users to perform certain actions as administrators via requests containing the pathname in the dir parameter and the filename in the ffile parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
flatnuke3 flatnuke3 |