Rivetcode Rivettracker vulnerabilities
3 known vulnerabilities affecting rivetcode/rivettracker.
Total CVEs
3
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH2LOW1
Vulnerabilities
Page 1 of 1
CVE-2012-4996P3HIGHCVSS 7.5PoC≤ 1.03v0.1+1 more2012-09-19
CVE-2012-4996 [HIGH] CWE-89 CVE-2012-4996: Multiple SQL injection vulnerabilities in RivetTracker 1.03 and earlier allow remote attackers to ex
Multiple SQL injection vulnerabilities in RivetTracker 1.03 and earlier allow remote attackers to execute arbitrary SQL commands via the hash parameter to (1) dltorrent.php or (2) torrent_functions.php.
nvd
CVE-2012-4993P3HIGHCVSS 7.5PoC≤ 1.032012-09-19
CVE-2012-4993 [HIGH] CWE-264 CVE-2012-4993: torrent_functions.php in RivetTracker 1.03 and earlier does not properly restrict access, which allo
torrent_functions.php in RivetTracker 1.03 and earlier does not properly restrict access, which allows remote attackers to have an unspecified impact.
nvd
CVE-2008-7207P4LOWCVSS 2.1≤ 0.8v0.12009-09-11
CVE-2008-7207 [LOW] CWE-310 CVE-2008-7207: RivetTracker before 1.0 stores passwords in cleartext in config.php, which allows local users to dis
RivetTracker before 1.0 stores passwords in cleartext in config.php, which allows local users to discover passwords by reading config.php.
nvd