Every CVE whose affected-product data names Deluge-torrent Deluge, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2017-9031 — CVSS 9.8 (critical): The WebUI component in Deluge before 1.3.15 contains a directory traversal vulnerability involving a request in which the name of the…
CVE-2017-7178 — CVSS 8.8 (high): CSRF was discovered in the web UI in Deluge before 1.3.14. The exploitation methodology involves (1) hosting a crafted plugin that executes…
CVE-2019-25585 — CVSS 6.2 (medium): Deluge 1.3.15 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively…
CVE-2019-25586 — CVSS 6.2 (medium): Deluge 1.3.15 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively…
CVE-2021-3427 — CVSS 6.1 (medium): The Deluge Web-UI is vulnerable to XSS through a crafted torrent file. The the data from torrent files is not properly sanitised as it's…