Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
transmissionbt transmission vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2010-0748
Transmission prior to 1.92 allows an malicious user to cause a denial of service (crash) or possibly have other unspecified impact via a large number of tr arguments in a magnet link.
Transmissionbt Transmission
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
8.8
CVSSv3
CVE-2018-5702
Transmission up to and including 2.92 relies on X-Transmission-Session-Id (which is not a forbidden header for Fetch) for access control, which allows remote malicious users to execute arbitrary RPC commands, and consequently write to arbitrary files, via POST requests to /transm...
Transmissionbt Transmission
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
1 EDB exploit
8.8
CVSSv3
CVE-2010-0012
Directory traversal vulnerability in libtransmission/metainfo.c in Transmission 1.22, 1.34, 1.75, and 1.76 allows remote malicious users to overwrite arbitrary files via a .. (dot dot) in a pathname within a .torrent file.
Transmissionbt Transmission 1.22
Transmissionbt Transmission 1.75
Transmissionbt Transmission 1.76
Transmissionbt Transmission 1.34
Debian Debian Linux 5.0
Opensuse Opensuse 11.1
Opensuse Opensuse 11.0
Opensuse Opensuse 11.2
7.8
CVSSv3
CVE-2018-10756
Use-after-free in libtransmission/variant.c in Transmission prior to 3.00 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted torrent file.
Transmissionbt Transmission
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Fedoraproject Fedora 31
Fedoraproject Fedora 32
5.3
CVSSv3
CVE-2010-0749
Transmission prior to 1.92 allows malicious users to prevent download of a file by corrupted data during the endgame.
Transmissionbt Transmission
Debian Debian Linux 8.0
Debian Debian Linux 10.0
Debian Debian Linux 9.0
NA
CVE-2014-4909
Integer overflow in the tr_bitfieldEnsureNthBitAlloced function in bitfield.c in Transmission prior to 2.84 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a crafted peer message, which triggers an out-of-bounds write.
Canonical Ubuntu Linux 13.10
Canonical Ubuntu Linux 14.04
Gentoo Linux
Fedoraproject Fedora 20
Canonical Ubuntu Linux 12.04
Transmissionbt Transmission 2.75
Transmissionbt Transmission 2.74
Transmissionbt Transmission 2.52
Transmissionbt Transmission 2.51
Transmissionbt Transmission 2.31
Transmissionbt Transmission 2.30
Transmissionbt Transmission 2.04
Transmissionbt Transmission 2.03
Transmissionbt Transmission 1.90
Transmissionbt Transmission 1.83
Transmissionbt Transmission 1.74
Transmissionbt Transmission 1.73
Transmissionbt Transmission 1.52
Transmissionbt Transmission 1.51
Transmissionbt Transmission 1.32
Transmissionbt Transmission 1.31
Transmissionbt Transmission 1.10
NA
CVE-2012-6129
Stack-based buffer overflow in utp.cpp in libutp, as used in Transmission prior to 2.74 and possibly other products, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via crafted "micro transport protocol packets."
Transmissionbt Transmission 2.72
Transmissionbt Transmission 2.70
Transmissionbt Transmission 2.03
Transmissionbt Transmission 2.13
Transmissionbt Transmission 2.11
Transmissionbt Transmission 2.32
Transmissionbt Transmission 2.51
Transmissionbt Transmission 2.60
Transmissionbt Transmission 1.93
Transmissionbt Transmission 1.81
Transmissionbt Transmission 1.90
Transmissionbt Transmission 1.82
Transmissionbt Transmission 1.02
Transmissionbt Transmission 1.04
Transmissionbt Transmission 1.22
Transmissionbt Transmission 1.34
Transmissionbt Transmission 1.60
Transmissionbt Transmission 1.42
Transmissionbt Transmission 1.61
Transmissionbt Transmission 1.2
Transmissionbt Transmission 1.31
Transmissionbt Transmission 0.6.1
NA
CVE-2012-4037
Multiple cross-site scripting (XSS) vulnerabilities in the web client in Transmission prior to 2.61 allow remote malicious users to inject arbitrary web script or HTML via the (1) comment, (2) created by, or (3) name field in a torrent file.
Transmissionbt Transmission 1.93
Transmissionbt Transmission 1.90
Transmissionbt Transmission 1.83
Transmissionbt Transmission 0.72
Transmissionbt Transmission 0.6.1
Transmissionbt Transmission 1.76
Transmissionbt Transmission 1.10
Transmissionbt Transmission 1.04
Transmissionbt Transmission 0.96
Transmissionbt Transmission 1.22
Transmissionbt Transmission 0.91
Transmissionbt Transmission 1.71
Transmissionbt Transmission 1.72
Transmissionbt Transmission 1.33
Transmissionbt Transmission 1.40
Transmissionbt Transmission 2.01
Transmissionbt Transmission 2.02
Transmissionbt Transmission 2.21
Transmissionbt Transmission 2.22
Transmissionbt Transmission 2.42
Transmissionbt Transmission 2.50
Transmissionbt Transmission 1.80
NA
CVE-2010-1853
Multiple stack-based buffer overflows in the tr_magnetParse function in libtransmission/magnet.c in Transmission 1.91 allow remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted magnet URL with a large number of (1) tr or (2)...
Transmissionbt Transmission 1.91
NA
CVE-2009-1757
Cross-site request forgery (CSRF) vulnerability in Transmission 1.5 prior to 1.53 and 1.6 prior to 1.61 allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Transmissionbt Transmission 1.51
Transmissionbt Transmission 1.60
Transmissionbt Transmission 1.50
Transmissionbt Transmission 1.52
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started