Blog Torrent 0.92 and earlier stores sensitive files under the web document root in the (1) data or (2) torrents directories with insufficient access control, which allows remote attackers to obtain sensitive information such as account names and password hashes, as demonstrated using data/newusers.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2005-07-12T04:00:00
Updated: 2024-08-07T22:22:47.746Z
Reserved: 2005-07-12T00:00:00
Link: CVE-2005-2229
Vulnrichment
No data.
NVD
Status : Modified
Published: 2005-07-12T04:00:00.000
Modified: 2024-11-20T23:59:04.937
Link: CVE-2005-2229
Redhat
No data.