torrent_functions.php in RivetTracker 1.03 and earlier does not properly restrict access, which allows remote attackers to have an unspecified...
6.9AI Score
0.009EPSS
RivetTracker before 1.0 stores passwords in cleartext in config.php, which allows local users to discover passwords by reading...
6.5AI Score
0.0004EPSS
Multiple SQL injection vulnerabilities in RivetTracker 1.03 and earlier allow remote attackers to execute arbitrary SQL commands via the hash parameter to (1) dltorrent.php or (2)...
8.8AI Score
0.008EPSS