QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2005-3306

Back to search

CVE-2005-3306

Published: Oct 25, 2005

Modified: Aug 7, 2024

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in index.php for FlatNuke 2.5.6 allows remote attackers to inject arbitrary web script or HTML via the user parameter in a profile operation, a different vulnerability than CVE-2005-2814. NOTE: it is possible that this XSS is a resultant vulnerability of CVE-2005-3307.

VendorProductVersions

n/a

n/a

affected
n/a

References

20051022 File Including In FLAT NUKE
mailing-list
x_refsource_BUGTRAQ
20246
vdb-entry
x_refsource_OSVDB
17291
third-party-advisory
x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now