Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

FlatNuke < 2.5.2 Form Submission Arbitrary Script Injection

Medium

Synopsis

The remote host is vulnerable to a Script Injection attack.

Description

The remote host is running FlatNuke, an open-source content management system. The remote version of this software is prone to a form submission vulnerability. This may allow an attacker to execute script on the remote host.

Solution

Upgrade to version 2.5.2 or higher.