CVE-2006-6604

TorrentFlux 2.2 - Authenticated Directory Traversal via Alias Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-6604. PoCs published by r0ut3r.

AI-analyzed exploit summary This exploit leverages a local file inclusion vulnerability in TorrentFlux 2.2 via the 'alias' parameter in downloaddetails.php to expose database credentials stored in config.php. It requires authentication and uses a valid session cookie to access sensitive information.

Description

Directory traversal vulnerability in downloaddetails.php in TorrentFlux 2.2 allows remote authenticated users to read arbitrary files via .. (dot dot) sequences in the alias parameter, a different vector than CVE-2006-6328.

Exploits (1)

exploitdb WORKING POC VERIFIED
by r0ut3r · perlwebappsphp
https://www.exploit-db.com/exploits/2902

This exploit leverages a local file inclusion vulnerability in TorrentFlux 2.2 via the 'alias' parameter in downloaddetails.php to expose database credentials stored in config.php. It requires authentication and uses a valid session cookie to access sensitive information.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: TorrentFlux 2.2
Auth required
Prerequisites: Valid TorrentFlux user credentials · Network access to the target
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/30831
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/23270
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/21525
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/2902

Scores

EPSS 0.0259
EPSS Percentile 83.2%

Details

Status published
Products (1)
torrentflux/torrentflux 2.2
Published Dec 15, 2006
Tracked Since Feb 18, 2026