CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
68.6%
Directory traversal vulnerability in viewnfo.php in (1) TorrentFlux before 2.2 and (2) torrentflux-b4rt before 2.1-b4rt-972 allows remote authenticated users to read arbitrary files via … (dot dot) sequences in the path parameter, a different vector than CVE-2006-6328.
Vendor | Product | Version | CPE |
---|---|---|---|
torrentflux | torrentflux | * | cpe:2.3:a:torrentflux:torrentflux:*:*:*:*:*:*:*:* |
torrentflux | torrentflux-b4rt | * | cpe:2.3:a:torrentflux:torrentflux-b4rt:*:*:*:*:*:*:*:* |
torrentflux | torrentflux-b4rt | 2.1_b4rt3 | cpe:2.3:a:torrentflux:torrentflux-b4rt:2.1_b4rt3:*:*:*:*:*:*:* |
torrentflux | torrentflux-b4rt | 2.1_b4rt4 | cpe:2.3:a:torrentflux:torrentflux-b4rt:2.1_b4rt4:*:*:*:*:*:*:* |
torrentflux | torrentflux-b4rt | 2.1_b4rt5 | cpe:2.3:a:torrentflux:torrentflux-b4rt:2.1_b4rt5:*:*:*:*:*:*:* |
torrentflux | torrentflux-b4rt | 2.1_b4rt6 | cpe:2.3:a:torrentflux:torrentflux-b4rt:2.1_b4rt6:*:*:*:*:*:*:* |
torrentflux | torrentflux-b4rt | 2.1_b4rt7 | cpe:2.3:a:torrentflux:torrentflux-b4rt:2.1_b4rt7:*:*:*:*:*:*:* |
torrentflux | torrentflux-b4rt | 2.1_b4rt8 | cpe:2.3:a:torrentflux:torrentflux-b4rt:2.1_b4rt8:*:*:*:*:*:*:* |
torrentflux | torrentflux-b4rt | 2.1_b4rt9 | cpe:2.3:a:torrentflux:torrentflux-b4rt:2.1_b4rt9:*:*:*:*:*:*:* |
torrentflux | torrentflux-b4rt | 2.1_b4rt61 | cpe:2.3:a:torrentflux:torrentflux-b4rt:2.1_b4rt61:*:*:*:*:*:*:* |