Vulnerabilities > Flatnuke > Flatnuke > 1.7
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-07-18 | CVE-2006-3608 | Remote File Include vulnerability in FlatNuke The Gallery module in Simone Vellei Flatnuke 2.5.7 and earlier, when Gallery uploads are enabled, does not restrict the extensions of uploaded files that begin with a GIF header, which allows remote authenticated users to execute arbitrary PHP code via an uploaded .php file. | 4.6 |