Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-0075

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00736EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2021-3427

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Deluge Web-UI is vulnerable to XSS through a crafted torrent file. The the data from torrent files is not properly sanitised as it's interpreted directly as...

6.1CVSS6.5AI score0.00736EPSS
Exploits1References3
OSV
OSV
added 2022/08/27 12:0 a.m.17 views

GHSA-5C8P-QHCH-QHX6 Deluge Web-UI vulnerable to XSS through a crafted torrent file

The Deluge Web-UI is vulnerable to cross-site scripting through a crafted torrent file. The the data from torrent files is not properly sanitised as it's interpreted directly as HTML. Someone who supplies the user with a malicious torrent file can execute arbitrary Javascript code in the context ...

6.1CVSS5.9AI score0.00736EPSS
Exploits1References7
NVD
NVD
added 2022/08/26 4:15 p.m.11 views

CVE-2021-3427

The Deluge Web-UI is vulnerable to XSS through a crafted torrent file. The the data from torrent files is not properly sanitised as it's interpreted directly as HTML. Someone who supplies the user with a malicious torrent file can execute arbitrary Javascript code in the context of the user's...

6.1CVSS0.00736EPSS
Exploits1References3
OSV
OSV
added 2022/08/26 4:15 p.m.20 views

CVE-2021-3427

The Deluge Web-UI is vulnerable to XSS through a crafted torrent file. The the data from torrent files is not properly sanitised as it's interpreted directly as HTML. Someone who supplies the user with a malicious torrent file can execute arbitrary Javascript code in the context of the user's...

6.1CVSS6.1AI score
Exploits0References3
PyPA
PyPA
added 2022/08/26 4:15 p.m.6 views

PYSEC-2022-256

The Deluge Web-UI is vulnerable to XSS through a crafted torrent file. The the data from torrent files is not properly sanitised as it's interpreted directly as HTML. Someone who supplies the user with a malicious torrent file can execute arbitrary Javascript code in the context of the user's...

6.1CVSS6.8AI score0.00736EPSS
Exploits1References3Affected Software1
AlpineLinux
AlpineLinux
added 2022/08/26 4:15 p.m.29 views

CVE-2021-3427

The Deluge Web-UI is vulnerable to XSS through a crafted torrent file. The the data from torrent files is not properly sanitised as it's interpreted directly as HTML. Someone who supplies the user with a malicious torrent file can execute arbitrary Javascript code in the context of the user's...

5.8CVSS0.4AI score0.00736EPSS
Exploits1
OSV
OSV
added 2022/08/26 4:15 p.m.20 views

PYSEC-2022-256

The Deluge Web-UI is vulnerable to XSS through a crafted torrent file. The the data from torrent files is not properly sanitised as it's interpreted directly as HTML. Someone who supplies the user with a malicious torrent file can execute arbitrary Javascript code in the context of the user's...

6.1CVSS0.4AI score0.00736EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2022/08/26 4:15 p.m.26 views

CVE-2021-3427

The Deluge Web-UI is vulnerable to XSS through a crafted torrent file. The the data from torrent files is not properly sanitised as it's interpreted directly as HTML. Someone who supplies the user with a malicious torrent file can execute arbitrary Javascript code in the context of the user's...

6.1CVSS6.6AI score0.00736EPSS
Exploits1References2
Prion
Prion
added 2022/08/26 4:15 p.m.12 views

Session fixation

The Deluge Web-UI is vulnerable to XSS through a crafted torrent file. The the data from torrent files is not properly sanitised as it's interpreted directly as HTML. Someone who supplies the user with a malicious torrent file can execute arbitrary Javascript code in the context of the user's...

5.8CVSS6.1AI score0.00736EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2022/08/26 12:0 a.m.4 views

Deluge Web-UI 跨站脚本漏洞

Deluge Web-UI is a full-featured interface built using the ExtJS framework. A security vulnerability exists in Deluge Web-UI because it does not properly sanitize data in torrent files and parses it directly as HTML, allowing whoever provides a malicious torrent file to a user to execute arbitrar...

6.1CVSS7.4AI score0.00736EPSS
Exploits1References5
Cvelist
Cvelist
added 2022/08/26 12:0 a.m.28 views

CVE-2021-3427

The Deluge Web-UI is vulnerable to XSS through a crafted torrent file. The the data from torrent files is not properly sanitised as it's interpreted directly as HTML. Someone who supplies the user with a malicious torrent file can execute arbitrary Javascript code in the context of the user's...

6.2AI score0.00736EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2022/08/26 12:0 a.m.34 views

CVE-2021-3427

The Deluge Web-UI is vulnerable to XSS through a crafted torrent file. The the data from torrent files is not properly sanitised as it's interpreted directly as HTML. Someone who supplies the user with a malicious torrent file can execute arbitrary Javascript code in the context of the user's...

6.1CVSS6.1AI score0.00736EPSS
Exploits1
Packet Storm
Packet Storm
added 2017/03/06 12:0 a.m.45 views

Deluge 1.3.13 Cross Site Request Forgery / Code Execution

Remote code execution via CSRF vulnerability in the web UI of Deluge 1.3.13 Kyle Neideck, February 2017 Product ------- Deluge is a BitTorrent client available from http://deluge-torrent.org. Fix --- Fixed in the public source code, but not in binary releases yet. See...

0.5AI score
Exploits0
Rows per page
Query Builder