Vulnerabilities > Ktorrent > Ktorrent > 2.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-01-15 | CVE-2008-5906 | Improper Input Validation vulnerability in Ktorrent Eval injection vulnerability in the web interface plugin in KTorrent before 3.1.4 allows remote attackers to execute arbitrary PHP code via unspecified parameters to this interface's PHP scripts. | 6.8 |
2009-01-15 | CVE-2008-5905 | Permissions, Privileges, and Access Controls vulnerability in Ktorrent The web interface plugin in KTorrent before 3.1.4 allows remote attackers to bypass intended access restrictions and upload arbitrary torrent files, and trigger the start of downloads and seeding, via a crafted HTTP POST request. | 4.3 |