Nicolas Guigo

**Name of the Vulnerable Software and Affected Versions** TorrentFlux version 2.4 **Description** The issue allows remote attackers to inject arbitrary web script or HTML by leveraging failure to encode file contents when downloading a torrent file. Additionally, remote authenticated users can inject arbitrary web script or HTML via vectors involving a link to torrent details. **Recommendations** For TorrentFlux version 2.4, update to a version that properly encodes file contents and validates user input to prevent arbitrary web script or HTML injection. As a temporary workaround, consider restricting access to torrent details links and ensuring that all file downloads are thoroughly validated to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** TorrentFlux version 2.4 **Description** The issue allows remote authenticated users to obtain other users' cookies via the `cid` parameter in an "editCookies action" to "profile.php". **Recommendations** For TorrentFlux version 2.4, consider restricting access to the "profile.php" endpoint or avoiding the use of the `cid` parameter in the editCookies action until a fix is available.

**Name of the Vulnerable Software and Affected Versions** TorrentFlux version 2.4 **Description** The issue allows remote authenticated users to delete or modify other users' cookies. This can be achieved by manipulating the `cid` parameter in an editCookies action to the "profile.php" endpoint. **Recommendations** For TorrentFlux version 2.4, consider restricting access to the `cid` parameter in the editCookies action to prevent unauthorized modification or deletion of cookies. As a temporary workaround, restrict access to the "profile.php" endpoint until a patch is available.