Vulnerabilities > CVE-2005-1893 - Information Disclosure vulnerability in Flatnuke 2.5.3

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
flatnuke
exploit available

Summary

FlatNuke 2.5.3 allows remote attackers to obtain sensitive information via invalid parameters to certain scripts, which leaks the web document root in an error message.

Vulnerable Configurations

Part Description Count
Application
Flatnuke
1

Exploit-Db

descriptionFlatNuke 2.5.x index.php where Variable Path Disclosure. CVE-2005-1893. Webapps exploit for php platform
idEDB-ID:25799
last seen2016-02-03
modified2005-06-07
published2005-06-07
reporterSecWatch
sourcehttps://www.exploit-db.com/download/25799/
titleFlatNuke 2.5.x index.php where Variable Path Disclosure