icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

FlatNuke < 2.5.6 Multiple XSS

Medium

Synopsis

The remote host is running FlatNuke, an open-source content management system.

Description

The remote host is running FlatNuke, an open-source content management system. The remote version of this software is prone to a XSS vulnerability. An attacker exploiting this flaw would typically need to convince a user to browse to a malicious URI. Success exploitation would result in the theft of confidential materials (such as authentication cookies).

Solution

Upgrade to version 2.5.6 or higher.