Torrentflux » Torrentflux : Security Vulnerabilities, CVEs, Published In 2006 (Directory traversal)
Directory traversal vulnerability in downloaddetails.php in TorrentFlux 2.2 allows remote authenticated users to read arbitrary files via .. (dot dot) sequences in the alias parameter, a different vector than CVE-2006-6328.
Max CVSS
6.5
EPSS Score
0.38%
Published
2006-12-15
Updated
2017-10-19
Directory traversal vulnerability in viewnfo.php in (1) TorrentFlux before 2.2 and (2) torrentflux-b4rt before 2.1-b4rt-972 allows remote authenticated users to read arbitrary files via .. (dot dot) sequences in the path parameter, a different vector than CVE-2006-6328.
Max CVSS
6.5
EPSS Score
0.28%
Published
2006-12-15
Updated
2017-10-19
Directory traversal vulnerability in index.php for TorrentFlux 2.2 allows remote attackers to create or overwrite arbitrary files via sequences in the alias_file parameter.
Max CVSS
4.9
EPSS Score
0.19%
Published
2006-12-06
Updated
2017-10-19
Directory traversal vulnerability in dir.php in TorrentFlux 2.1 allows remote attackers to list arbitrary directories via "\.\./" sequences in the dir parameter.
Max CVSS
5.0
EPSS Score
1.86%
Published
2006-10-30
Updated
2018-10-17
4 vulnerabilities found