Lucene search
+L

24 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-6311

Malware in sbrugna...

4.9CVSS6.2AI score0.02489EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/21 7:59 p.m.9 views

CVE-2006-6600

Cross-site scripting XSS vulnerability in dir.php in TorrentFlux 2.2, when allows remote attackers to inject arbitrary web script or HTML via double URL-encoded strings in the dir parameter, a related issue to CVE-2006-5609...

6CVSS6AI score0.03704EPSS
Exploits1References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

torrentflux <= 2.2 (create/exec/delete) Multiple Vulnerabilities

No description provided by source. r0ut3r Presents... Another r0ut3r discovery! TorrentFlux 2.2 Arbitrary File Creation/Overwrite/Deletion & Command Execution Vulnerablities Software: TorrentFlux 2.2 Vendor: http://www.torrentflux.com/ Released: 2006/11/15...

6.7AI score
Exploits0
NVD
NVD
added 2006/12/15 10:28 p.m.17 views

CVE-2006-6600

Cross-site scripting XSS vulnerability in dir.php in TorrentFlux 2.2, when allows remote attackers to inject arbitrary web script or HTML via double URL-encoded strings in the dir parameter, a related issue to CVE-2006-5609...

6CVSS5.7AI score0.01023EPSS
Exploits1References2
NVD
NVD
added 2006/12/15 10:28 p.m.16 views

CVE-2006-6599

maketorrent.php in TorrentFlux 2.2 allows remote authenticated users to execute arbitrary commands via shell metacharacters ";" semicolon in the announce parameter...

6CVSS7.3AI score0.02673EPSS
Exploits0References4
NVD
NVD
added 2006/12/15 10:28 p.m.14 views

CVE-2006-6604

Directory traversal vulnerability in downloaddetails.php in TorrentFlux 2.2 allows remote authenticated users to read arbitrary files via .. dot dot sequences in the alias parameter, a different vector than CVE-2006-6328...

6.5CVSS6.1AI score0.02721EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2006/12/15 10:28 p.m.30 views

CVE-2006-6600

Cross-site scripting XSS vulnerability in dir.php in TorrentFlux 2.2, when allows remote attackers to inject arbitrary web script or HTML via double URL-encoded strings in the dir parameter, a related issue to CVE-2006-5609...

6CVSS6.1AI score0.01023EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2006/12/15 10:28 p.m.30 views

CVE-2006-6599

maketorrent.php in TorrentFlux 2.2 allows remote authenticated users to execute arbitrary commands via shell metacharacters ";" semicolon in the announce parameter...

6CVSS6.1AI score0.02673EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2006/12/15 10:28 p.m.27 views

CVE-2006-6604

Directory traversal vulnerability in downloaddetails.php in TorrentFlux 2.2 allows remote authenticated users to read arbitrary files via .. dot dot sequences in the alias parameter, a different vector than CVE-2006-6328...

6.5CVSS6.1AI score0.02721EPSS
Exploits0References1
Cvelist
Cvelist
added 2006/12/15 10:0 p.m.20 views

CVE-2006-6604

Directory traversal vulnerability in downloaddetails.php in TorrentFlux 2.2 allows remote authenticated users to read arbitrary files via .. dot dot sequences in the alias parameter, a different vector than CVE-2006-6328...

6AI score0.02721EPSS
Exploits0References4
seebug.org
seebug.org
added 2006/12/11 12:0 a.m.18 views

TorrentFlux 2.2 Database Credentials Exposure Exploit

No description provided by source. Description: TorrentFlux fails to sanitise the variable "alias" in downloaddetails.php. This allows an attacker to include any file they want; the contents is displayed at in the spaces provided and the remaning data is displayed as error messages on the page...

7.1AI score
Exploits0
0day.today
0day.today
added 2006/12/09 12:0 a.m.51 views

TorrentFlux 2.2 (maketorrent.php) Remote Command Execution Exploit

Exploit for unknown platform in category web applications ================================================================== TorrentFlux 2.2 maketorrent.php Remote Command Execution Exploit ================================================================== The variable announce in maketorrent.php...

7.1AI score
Exploits0
0day.today
0day.today
added 2006/12/09 12:0 a.m.307 views

TorrentFlux 2.2 (downloaddetails.php) Local File Disclosure Exploit

Exploit for unknown platform in category web applications =================================================================== TorrentFlux 2.2 downloaddetails.php Local File Disclosure Exploit =================================================================== Description: TorrentFlux fails to...

7.1AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2006/12/06 9:28 p.m.1 views

CVE-2006-6329

index.php for TorrentFlux 2.2 allows remote attackers to delete files by specifying the target filename in the delfile parameter...

4.9CVSS5.6AI score0.02489EPSS
Exploits0References4
NVD
NVD
added 2006/12/06 9:28 p.m.10 views

CVE-2006-6331

metaInfo.php in TorrentFlux 2.2, when $cfg"enablefilepriority" is false, allows remote attackers to execute arbitrary commands via shell metacharacters backticks in the torrent parameter to 1 details.php and 2 startpop.php...

6CVSS7.7AI score0.01234EPSS
Exploits0References3
NVD
NVD
added 2006/12/06 9:28 p.m.16 views

CVE-2006-6330

index.php for TorrentFlux 2.2 allows remote registered users to execute arbitrary commands via shell metacharacters in the kill parameter...

6CVSS7.6AI score0.02911EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2006/12/06 9:28 p.m.22 views

CVE-2006-6329

index.php for TorrentFlux 2.2 allows remote attackers to delete files by specifying the target filename in the delfile parameter...

4.9CVSS6AI score0.02489EPSS
Exploits0References1
CVE
CVE
added 2006/12/06 9:0 p.m.46 views

CVE-2006-6329

CVE-2006-6329 affects TorrentFlux 2.2. The vulnerability: index.php permits remote deletion of files by supplying the target filename in the delfile parameter. This is a remote, unauthenticated-like action (network impact) with potential partial integrity/availability impact as per the NVD CVSS, ...

4.9CVSS6.7AI score0.02489EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2006/12/06 9:0 p.m.58 views

CVE-2006-6328

CVE-2006-6328 affects TorrentFlux 2.2, specifically index.php, where directory traversal is possible through sequences in the alias_file parameter. This can allow remote attackers to create or overwrite arbitrary files. The description explicitly ties the vulnerability to TorrentFlux 2.2 and the ...

4.9CVSS6.7AI score0.02489EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2006/12/06 9:0 p.m.20 views

CVE-2006-6329

index.php for TorrentFlux 2.2 allows remote attackers to delete files by specifying the target filename in the delfile parameter...

6.7AI score0.02489EPSS
Exploits0References3
Rows per page
Query Builder