CVE-2005-1893
FlatNuke 2.5.3 - Information Disclosure via Invalid Parameter Error Message
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2005-1893. PoCs published by SecWatch.
AI-analyzed exploit summary The provided text describes input validation vulnerabilities in FlatNuke, allowing arbitrary PHP code execution, XSS, and information disclosure. However, no actual exploit code is present, only a description and a sample URL.
Description
FlatNuke 2.5.3 allows remote attackers to obtain sensitive information via invalid parameters to certain scripts, which leaks the web document root in an error message.
Exploits (1)
The provided text describes input validation vulnerabilities in FlatNuke, allowing arbitrary PHP code execution, XSS, and information disclosure. However, no actual exploit code is present, only a description and a sample URL.