Package: torrentflux Severity: grave Tags: security More security vulnerabilities has been found in torrentflux. From http://secunia.com/advisories/22880/ :
1) Input passed to the "kill" parameter in index.php is not properly sanitised before being used as the command line argument to the "kill" command. This can be exploited to inject arbitrary shell commands via the ";" character. Successful exploitation requires valid user credentials. 2) Input passed to the "delfile" or "alias_file" parameters in index.php is not properly sanitised before being used to delete, create or overwrite files. The "delfile" parameter can be exploited to delete arbitrary files. The "alias_file" parameter can be exploited to create or overwrite arbitrary files, but an attacker cannot control what data will be written to them. Successful exploitation requires valid user credentials. The vulnerabilities are confirmed in version 2.1. Other versions may also be affected.
pgpINE1ZO4ruK.pgp
Description: PGP signature
