CVE-2012-4037
Transmission < 2.60 - XSS
Title source: ruleDescription
Multiple cross-site scripting (XSS) vulnerabilities in the web client in Transmission before 2.61 allow remote attackers to inject arbitrary web script or HTML via the (1) comment, (2) created by, or (3) name field in a torrent file.
References (8)
Scores
EPSS
0.0054
EPSS Percentile
67.5%
Classification
CWE
CWE-79
Status
published
Affected Products (50)
transmissionbt/transmission
< 2.60
transmissionbt/transmission
transmissionbt/transmission
transmissionbt/transmission
transmissionbt/transmission
transmissionbt/transmission
transmissionbt/transmission
transmissionbt/transmission
transmissionbt/transmission
transmissionbt/transmission
transmissionbt/transmission
transmissionbt/transmission
transmissionbt/transmission
transmissionbt/transmission
transmissionbt/transmission
... and 35 more
Timeline
Published
Aug 15, 2012
Tracked Since
Feb 18, 2026