Torrenttrader » Torrenttrader » 1.08 classic_edition : Security Vulnerabilities, CVEs,
SQL injection vulnerability in scrape.php in TorrentTrader before 2008-05-13 allows remote attackers to execute arbitrary SQL commands via the info_hash parameter.
Max CVSS
7.5
EPSS Score
0.11%
Published
2009-03-06
Updated
2018-10-11
SQL injection vulnerability in completed-advance.php in TorrentTrader Classic 1.08 and 1.04 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
Max CVSS
7.5
EPSS Score
0.09%
Published
2008-10-09
Updated
2017-09-29
Cross-site scripting (XSS) vulnerability in account-inbox.php in TorrentTrader Classic 1.08 allows remote attackers to inject arbitrary web script or HTML via the msg parameter.
Max CVSS
4.3
EPSS Score
0.27%
Published
2008-03-06
Updated
2018-10-11
Cross-site request forgery (CSRF) vulnerabilities in account-inbox.php in TorrentTrader Classic 1.08 allow remote attackers to perform certain actions as other users, as demonstrated by sending messages.
Max CVSS
4.3
EPSS Score
0.15%
Published
2008-03-06
Updated
2018-10-11
4 vulnerabilities found