6.6 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
71.6%
The web interface plugin in KTorrent before 3.1.4 allows remote attackers to bypass intended access restrictions and upload arbitrary torrent files, and trigger the start of downloads and seeding, via a crafted HTTP POST request.