Directory traversal vulnerability in downloaddetails.php in TorrentFlux 2.2 allows remote authenticated users to read arbitrary files via .. (dot dot) sequences in the alias parameter, a different vector than CVE-2006-6328.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
torrentflux torrentflux 2.2 |