Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
transmission vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2010-0012
Directory traversal vulnerability in libtransmission/metainfo.c in Transmission 1.22, 1.34, 1.75, and 1.76 allows remote malicious users to overwrite arbitrary files via a .. (dot dot) in a pathname within a .torrent file.
Transmissionbt Transmission 1.22
Transmissionbt Transmission 1.75
Transmissionbt Transmission 1.76
Transmissionbt Transmission 1.34
Debian Debian Linux 5.0
Opensuse Opensuse 11.1
Opensuse Opensuse 11.0
Opensuse Opensuse 11.2
NA
CVE-2020-36647
A vulnerability classified as critical has been found in YunoHost-Apps transmission_ynh. Affected is an unknown function of the file conf/nginx.conf. The manipulation leads to path traversal. The patch is identified as f136dfd44eda128129e5fd2d850a3a3c600e6a4a. It is recommended t...
Yunohost Transmission Ynh
6.8
CVSSv2
CVE-2010-1853
Multiple stack-based buffer overflows in the tr_magnetParse function in libtransmission/magnet.c in Transmission 1.91 allow remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted magnet URL with a large number of (1) tr or (2)...
Transmissionbt Transmission 1.91
7.8
CVSSv2
CVE-2006-2272
Linux SCTP (lksctp) prior to 2.6.17 allows remote malicious users to cause a denial of service (kernel panic) via incoming IP fragmented (1) COOKIE_ECHO and (2) HEARTBEAT SCTP control chunks.
Lksctp Stream Control Transmission Protocol
5
CVSSv2
CVE-2007-6146
Hitachi JP1/File Transmission Server/FTP 01-00 through 08-10-02 on Windows might allow remote malicious users to cause a denial of service (service stop) via a "specific file" argument to an FTP command.
Hitachi Jp1 File Transmission Server 07 00
5
CVSSv2
CVE-2006-2274
Linux SCTP (lksctp) prior to 2.6.17 allows remote malicious users to cause a denial of service (infinite recursion and crash) via a packet that contains two or more DATA fragments, which causes an skb pointer to refer back to itself when the full message is reassembled, leading t...
Lksctp Stream Control Transmission Protocol 2.6.17
5
CVSSv2
CVE-2010-0749
Transmission prior to 1.92 allows malicious users to prevent download of a file by corrupted data during the endgame.
Transmissionbt Transmission
Debian Debian Linux 8.0
Debian Debian Linux 10.0
Debian Debian Linux 9.0
6.8
CVSSv2
CVE-2018-5702
Transmission up to and including 2.92 relies on X-Transmission-Session-Id (which is not a forbidden header for Fetch) for access control, which allows remote malicious users to execute arbitrary RPC commands, and consequently write to arbitrary files, via POST requests to /transm...
Transmissionbt Transmission
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
1 EDB exploit
7.5
CVSSv2
CVE-2010-0748
Transmission prior to 1.92 allows an malicious user to cause a denial of service (crash) or possibly have other unspecified impact via a large number of tr arguments in a magnet link.
Transmissionbt Transmission
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
6.8
CVSSv2
CVE-2018-10756
Use-after-free in libtransmission/variant.c in Transmission prior to 3.00 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted torrent file.
Transmissionbt Transmission
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Fedoraproject Fedora 31
Fedoraproject Fedora 32
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »