cpe:/a:torrentflux:torrentflux:2.3 CVE-2008-6585 2009-04-03T14:30:00.233-04:00 2017-08-16T21:29:24.847-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-04-06T08:47:00.000-04:00 BUGTRAQ 20080418 BitTorrent Clients and CSRF BID 28846 SECUNIA 29935 OSVDB 44646 XF torrentflux-admin-csrf(41926) Cross-site request forgery (CSRF) vulnerability in html/admin.php in TorrentFlux 2.3 allows remote attackers to hijack the authentication of administrators for requests that add new accounts via the addUser action.