CVE-2007-5773
CSRF in the File Manager module (index.php) of Flatnuke 3 allows remote attackers to perform administrative actions via forged requests that include the dir parameter (pathname) and the ffile parameter (filename). The vulnerability originates from the module’s index.php handling of these paramete...