Flatnuke Index.PHP Directory Traversal Vulnerability

Flatnuke Index.PHP Directory Traversal Vulnerability

No exploit is required.

An example URI has been provided:

http://www.example.com/?mod=read&id=../forum/users/[adminname].php%00

Sample exploit code has been provided as well:

/data/vulnerabilities/exploits/flatnuke_256_xpl.php