CVE-2005-2814
published 2005-09-07CVE-2005-2814: Cross-site scripting (XSS) vulnerability in FlatNuke 2.5.6 allows remote attackers to inject arbitrary web script or HTML via the usr parameter in a vis_reg…
PriorityP418medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
1.73%
74.7th percentile
Cross-site scripting (XSS) vulnerability in FlatNuke 2.5.6 allows remote attackers to inject arbitrary web script or HTML via the usr parameter in a vis_reg operation to index.php.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| flatnuke | flatnuke | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-xv89-m532-6prh: Cross-site scripting (XSS) vulnerability in FlatNuke 2
ghsa_unreviewed·2022-05-01
CVE-2005-2814 [MEDIUM] GHSA-xv89-m532-6prh: Cross-site scripting (XSS) vulnerability in FlatNuke 2
Cross-site scripting (XSS) vulnerability in FlatNuke 2.5.6 allows remote attackers to inject arbitrary web script or HTML via the usr parameter in a vis_reg operation to index.php.
GHSA
GHSA-jf67-5p7g-mgxr: Cross-site scripting (XSS) vulnerability in index
ghsa_unreviewed·2022-05-01·CVSS 4.3
CVE-2005-3306 [MEDIUM] GHSA-jf67-5p7g-mgxr: Cross-site scripting (XSS) vulnerability in index
Cross-site scripting (XSS) vulnerability in index.php for FlatNuke 2.5.6 allows remote attackers to inject arbitrary web script or HTML via the user parameter in a profile operation, a different vulnerability than CVE-2005-2814. NOTE: it is possible that this XSS is a resultant vulnerability of CVE-2005-3307.
No detection rules found.
No writeups or analysis indexed.
http://seclists.org/lists/bugtraq/2005/Aug/0440.htmlhttp://securitytracker.com/id?1014824http://www.securityfocus.com/bid/14704https://exchange.xforce.ibmcloud.com/vulnerabilities/22101http://seclists.org/lists/bugtraq/2005/Aug/0440.htmlhttp://securitytracker.com/id?1014824http://www.securityfocus.com/bid/14704https://exchange.xforce.ibmcloud.com/vulnerabilities/22101
2005-09-07
Published