5.7 Medium
AI Score
Confidence
High
0.019 Low
EPSS
Percentile
88.4%
Cross-site scripting (XSS) vulnerability in dir.php in TorrentFlux 2.2, when allows remote attackers to inject arbitrary web script or HTML via double URL-encoded strings in the dir parameter, a related issue to CVE-2006-5609.
bugs.debian.org/cgi-bin/bugreport.cgi?bug=%23400582
secunia.com/advisories/23270