2 matches found
CVE-2005-3307
Directory traversal vulnerability in index.php for FlatNuke 2.5.6 allows remote attackers to read arbitrary files via ".." sequences in the 1 user parameter in a profile operation or 2 quale parameter in a newtopic operation...
CVE-2005-3307
CVE-2005-3307 affects FlatNuke 2.5.6. A directory traversal in index.php allows remote attackers to read arbitrary files via .. sequences in the user parameter (profile) or quale parameter (newtopic). Exploitation is remote and requires no authentication. A related Nessus entry implies a fixed ve...