Utorrent » Utorrent Webui : Security Vulnerabilities, CVEs, CVSS score >= 2
Cross-site request forgery (CSRF) vulnerability in gui/index.php in µTorrent (uTorrent) WebUI 0.315 allows remote attackers to (1) hijack the authentication of users for requests that force the download of arbitrary torrent files via the add-url action and (2) hijack the authentication of administrators for requests that modify the administrator account via the setsetting action.
Max CVSS
6.8
EPSS Score
0.90%
Published
2009-04-03
Updated
2020-02-10
1 vulnerabilities found