Torrentflux Project Torrentflux — known CVE vulnerabilities
Every CVE whose affected-product data names Torrentflux Project Torrentflux, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2008-2020 — CVSS 7.5 (high): The CAPTCHA implementation as used in (1) Francisco Burzi PHP-Nuke 7.0 and 8.1, (2) my123tkShop e-Commerce-Suite (aka 123tkShop) 0.9.1, (3)…
CVE-2014-6027 — CVSS 6.1 (medium): Multiple cross-site scripting (XSS) vulnerabilities in TorrentFlux 2.4 allow (1) remote attackers to inject arbitrary web script or HTML by…
CVE-2014-6029 — CVSS 4.9 (medium): TorrentFlux 2.4 allows remote authenticated users to delete or modify other users' cookies via the cid parameter in an editCookies action…
CVE-2014-6028 — CVSS 4.0 (medium): TorrentFlux 2.4 allows remote authenticated users to obtain other users' cookies via the cid parameter in an editCookies action to…