CVE-2006-6328

TorrentFlux 2.2 - Directory Traversal and Arbitrary File Write via Alias File Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-6328. PoCs published by r0ut3r.

AI-analyzed exploit summary This exploit demonstrates arbitrary file creation, overwrite, deletion, and command execution in TorrentFlux 2.2 via unsanitized parameters. It leverages the 'alias_file', 'delfile', and 'kill' parameters to manipulate files and execute commands.

Description

Directory traversal vulnerability in index.php for TorrentFlux 2.2 allows remote attackers to create or overwrite arbitrary files via sequences in the alias_file parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by r0ut3r · textwebappsphp

https://www.exploit-db.com/exploits/2786

View Code ZIP pw:eip

This exploit demonstrates arbitrary file creation, overwrite, deletion, and command execution in TorrentFlux 2.2 via unsanitized parameters. It leverages the 'alias_file', 'delfile', and 'kill' parameters to manipulate files and execute commands.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: TorrentFlux 2.2

Auth required

Prerequisites: Registered member access to index.php

MITRE ATT&CK

T1202 - Indirect Command Execution T1005 - Data from Local System

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Issue Tracking x_refsource_confirm

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=%23400582

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/2786

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/22880

Scores

EPSS 0.0237

EPSS Percentile 81.6%

Details

Status published

Products (1)

torrentflux/torrentflux 2.2

Published Dec 06, 2006

Tracked Since Feb 18, 2026