This document details multiple vulnerabilities in TS Special Edition <= v7.0, including information disclosure (MySQL credentials and config files), client-side manipulation (bypassing vote system via HTML source editing), and unauthorized data access (viewing user torrent activities via JavaScript injection). No functional exploit code is provided, but technical steps are described.
Classification
Writeup 90%
Attack Type
Info Leak | Auth Bypass
Target:
TS Special Edition <= v7.0
No auth needed
Prerequisites:
Access to userdetails.php or details.php · Ability to modify client-side HTML (e.g., via FireBug)