Blog Torrent 0.92 and earlier stores sensitive files under the web document root in the (1) data or (2) torrents directories with insufficient access control, which allows remote attackers to obtain sensitive information such as account names and password hashes, as demonstrated using data/newusers.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2005-07-12T04:00:00

Updated: 2024-08-07T22:22:47.746Z

Reserved: 2005-07-12T00:00:00

Link: CVE-2005-2229

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2005-07-12T04:00:00.000

Modified: 2024-11-20T23:59:04.937

Link: CVE-2005-2229

cve-icon Redhat

No data.