VDB

DEBIAN-CVE-2012-4037

DEBIAN-CVE-2012-4037 PUBLISHED CVSS 9.300000190734863 CRITICAL

Multiple cross-site scripting (XSS) vulnerabilities in the web client in Transmission before 2.61 allow remote attackers to inject arbitrary web script or HTML via the (1) comment, (2) created by, or (3) name field in a torrent file.

Risk Scores

CVSS 4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

Affected Products

VendorProductVersions
Debian:12transmission0, 0, 0
Debian:13transmission0, 0, 0
Debian:14transmission0, 0, 0
Debian:11transmission0, 0, 0

Timeline

  • Aug 15, 2012 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›