5 matches found
CVE-2006-6599
maketorrent.php in TorrentFlux 2.2 allows remote authenticated users to execute arbitrary commands via shell metacharacters ";" semicolon in the announce parameter...
TorrentFlux 2.2 Command Execution Exploit
No description provided by source. The variable announce in maketorrent.php is not sanitised before being used. The announce variable goes through various stages throughout the script, then it is passed as a into an exec function. This occurs in the middle of the string which is passed to the exe...
TorrentFlux 2.2 - 'maketorrent.php' Remote Command Execution
The variable announce in maketorrent.php is not sanitised before being used. The announce variable goes through various stages throughout the script, then it is passed as a into an exec function. This occurs in the middle of the string which is passed to the exec function. Therefore it is possibl...
TorrentFlux 2.2 (maketorrent.php) Remote Command Execution Exploit
Exploit for unknown platform in category web applications ================================================================== TorrentFlux 2.2 maketorrent.php Remote Command Execution Exploit ================================================================== The variable announce in maketorrent.php...
TorrentFlux 2.2 - maketorrent.php Remote Command Execution
TorrentFlux 2.2 - maketorrent.php Remote Command Execution The variable announce in maketorrent.php is not sanitised before being used. The announce variable goes through various stages throughout the script, then it is passed as a into an exec function. This occurs in the middle of the string...