ByteOS Network

NVD Vulnerability Details :

CVE-2007-5773

Modified

Source-cve@mitre.org

Published At-01 Nov, 2007 | 16:46

Updated At-23 Apr, 2026 | 00:35

Cross-site request forgery (CSRF) vulnerability in index.php in the File Manager module in Flatnuke 3 allows remote attackers to perform certain actions as administrators via requests containing the pathname in the dir parameter and the filename in the ffile parameter.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:P/A:N

Type: Primary

Version: 2.0

Base score: 4.3

Base severity: MEDIUM

Vector:

AV:N/AC:M/Au:N/C:N/I:P/A:N

CPE Matches

flatnuke3>>flatnuke3>>*

cpe:2.3:a:flatnuke3:flatnuke3:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-352	Primary	nvd@nist.gov

CWE ID: CWE-352

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://osvdb.org/43635	cve@mitre.org	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/37413	cve@mitre.org	N/A
https://www.exploit-db.com/exploits/4561	cve@mitre.org	N/A
http://osvdb.org/43635	af854a3a-2127-422b-91ae-364da2661108	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/37413	af854a3a-2127-422b-91ae-364da2661108	N/A
https://www.exploit-db.com/exploits/4561	af854a3a-2127-422b-91ae-364da2661108	N/A