Vulnerabilities > CVE-2004-1212 - Remote Directory Traversal vulnerability in Blog Torrent Blog Torrent Preview 0.8
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Directory traversal vulnerability in btdownload.php in Blog Torrent preview 0.8 allows remote attackers to download arbitrary files via a .. (dot dot) in the file argument.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Blog Torrent 0.8 Remote Directory Traversal Vulnerability. CVE-2004-1212. Webapps exploit for php platform |
id | EDB-ID:24796 |
last seen | 2016-02-03 |
modified | 2004-12-02 |
published | 2004-12-02 |
reporter | Steve Kemp |
source | https://www.exploit-db.com/download/24796/ |
title | Blog Torrent 0.8 - Remote Directory Traversal Vulnerability |
Nessus
NASL family | CGI abuses |
NASL id | TORRENT_TRAVERSAL.NASL |
description | There is a remote directory traversal vulnerability in log Torrent, a web-based application that allows users to host files for Bit Torrents. A malicious user can leverage this issue by requesting files outside of the web server root directory with directory traversal strings such as |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 15904 |
published | 2004-12-05 |
reporter | This script is Copyright (C) 2004-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/15904 |
title | Blog Torrent btdownload.php file Variable Traversal Arbitrary File Retrieval |
code |
|