Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
torrentflux vulnerabilities and exploits
(subscribe to this query)
6
CVSSv2
CVE-2006-6331
metaInfo.php in TorrentFlux 2.2, when $cfg["enable_file_priority"] is false, allows remote malicious users to execute arbitrary commands via shell metacharacters (backticks) in the torrent parameter to (1) details.php and (2) startpop.php.
Torrentflux Torrentflux 2.2
6
CVSSv2
CVE-2008-6584
html/index.php in TorrentFlux 2.3 allows remote authenticated users to execute arbitrary code via a URL with a file containing an executable extension in the url_upload parameter, which is downloaded by TorrentFlux and can be accessed via a direct request in a html/downloads/ use...
Torrentflux Torrentflux 2.3
6.8
CVSSv2
CVE-2008-6585
Cross-site request forgery (CSRF) vulnerability in html/admin.php in TorrentFlux 2.3 allows remote malicious users to hijack the authentication of administrators for requests that add new accounts via the addUser action.
Torrentflux Torrentflux 2.3
1 EDB exploit
4
CVSSv2
CVE-2014-6028
TorrentFlux 2.4 allows remote authenticated users to obtain other users' cookies via the cid parameter in an editCookies action to profile.php.
Torrentflux Project Torrentflux 2.4
4.9
CVSSv2
CVE-2014-6029
TorrentFlux 2.4 allows remote authenticated users to delete or modify other users' cookies via the cid parameter in an editCookies action to profile.php.
Torrentflux Project Torrentflux 2.4
4.3
CVSSv2
CVE-2014-6027
Multiple cross-site scripting (XSS) vulnerabilities in TorrentFlux 2.4 allow (1) remote malicious users to inject arbitrary web script or HTML by leveraging failure to encode file contents when downloading a torrent file or (2) remote authenticated users to inject arbitrary web s...
Torrentflux Project Torrentflux 2.4
6.8
CVSSv2
CVE-2008-2020
The CAPTCHA implementation as used in (1) Francisco Burzi PHP-Nuke 7.0 and 8.1, (2) my123tkShop e-Commerce-Suite (aka 123tkShop) 0.9.1, (3) phpMyBitTorrent 1.2.2, (4) TorrentFlux 2.3, (5) e107 0.7.11, (6) WebZE 0.5.9, (7) Open Media Collectors Database (aka OpenDb) 1.5.0b4, and (...
My123tkshop E-commerce-suite 0.9.1
Phpmybittorrent Phpmybittorrent 1.2.2
Webze Webze 0.5.9
E107 E107 0.7.11
Labgab Labgab 1.1
Phpnuke Php-nuke 7.0
Torrentflux Project Torrentflux 2.3
Phpnuke Php-nuke 8.1
Opendb Opendb 1.5.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2