• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Flatnuke Index.PHP Directory Traversal Vulnerability

Flatnuke is prone to a directory traversal vulnerability. This is due to a lack of proper sanitization of user-supplied input.

A remote attacker may employ directory traversal strings '../' to read sensitive files containing MD5 password hashes, and create malicious cookie data which may be used to log in as an administrative user. An attacker may then create and execute malicious code, which may be executed within the context of the administrative user's account. This code may be executed within the context of the affected Web server process.

Flatnuke 2.5.6 is affected; earlier versions may also be affected.