{"id":"CVE-2008-5905","details":"The web interface plugin in KTorrent before 3.1.4 allows remote attackers to bypass intended access restrictions and upload arbitrary torrent files, and trigger the start of downloads and seeding, via a crafted HTTP POST request.","modified":"2026-04-10T03:40:28.966336Z","published":"2009-01-15T17:30:00Z","references":[{"type":"ADVISORY","url":"http://ktorrent.org/?q=node/23"},{"type":"ADVISORY","url":"http://secunia.com/advisories/32442"},{"type":"ADVISORY","url":"http://secunia.com/advisories/32447"},{"type":"ADVISORY","url":"http://secunia.com/advisories/33675"},{"type":"ADVISORY","url":"http://secunia.com/advisories/34003"},{"type":"ADVISORY","url":"http://security.gentoo.org/glsa/glsa-200902-05.xml"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-711-1"},{"type":"ADVISORY","url":"http://www.vupen.com/english/advisories/2008/2911"},{"type":"WEB","url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=504178"},{"type":"WEB","url":"http://openwall.com/lists/oss-security/2009/01/08/1"},{"type":"WEB","url":"http://www.securityfocus.com/bid/31927"},{"type":"WEB","url":"https://bugs.gentoo.org/show_bug.cgi?id=244741"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/46117"}],"schema_version":"1.7.5"}