CVE-2008-5905

The web interface plugin in KTorrent before 3.1.4 allows remote attackers to bypass intended access restrictions and upload arbitrary torrent files, and trigger the start of downloads and seeding, via a crafted HTTP POST request.

Date published : 2009-01-15

http://www.securityfocus.com/bid/31927

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=504178