5 matches found
CVE-2017-7178
creationtimestamp| type| source ---|---|--- 2025-06-03 14:00:00+00:00| seen| https://github.blog/security/application-security/dns-rebinding-attacks-explained-the-lookup-is-coming-from-inside-the-house/ 2026-02-11 08:11:05+00:00| seen|...
openSUSE Security Update : deluge (openSUSE-2017-656)
This update for deluge fixes two security issues : - CVE-2017-9031: A remote attacker may have used a directory traversal vulnerability in the web interface bsc1039815 - CVE-2017-7178: A remote attacher could have exploited a CSRF vulnerability to trick a logged-in user to perform actions in the...
Debian DSA-3856-1 : deluge - security update
Two vulnerabilities have been discovered in the web interface of the Deluge BitTorrent client directory traversal and cross-site request forgery. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisor...
[SECURITY] [DSA 3856-1] deluge security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3856-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 18, 2017 https://www.debian.org/security/faq -...
CVE-2017-7178
CVE-2017-7178 (Deluge WebUI CSRF) affects Deluge up to version 1.3.14. A remote attacker could lure a logged-in user to visit a malicious page that exploits CSRF to download and enable a crafted plugin via the WebUI, causing the plugin to execute arbitrary code on the victim’s system. Remediation...