Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cerberusftp ftp server vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2019-25046
The Web Client in Cerberus FTP Server Enterprise prior to 10.0.19 and 11.x prior to 11.0.4 allows XSS via an SVG document.
Cerberusftp Ftp Server
5.5
CVSSv2
CVE-2020-5196
Cerberus FTP Server Enterprise Edition prior to versions 11.0.3 and 10.0.18 allows an authenticated malicious user to create files, display hidden files, list directories, and list files without the permission to zip and download (or unzip and upload) files. There are multiple wa...
Cerberusftp Ftp Server
5.5
CVSSv2
CVE-2020-5194
The zip API endpoint in Cerberus FTP Server 8 allows an authenticated attacker without zip permission to use the zip functionality via an unrestricted API endpoint. Improper permission verification occurs when calling the file/ajax_download_zip/zip_name endpoint. The result is th...
Cerberusftp Ftp Server 8.0
4.3
CVSSv2
CVE-2020-5195
Reflected XSS through an IMG element in Cerberus FTP Server prior to versions 11.0.1 and 10.0.17 allows a remote malicious user to execute arbitrary JavaScript or HTML via a crafted public folder URL. This occurs because of the folder_up.png IMG element not properly sanitizing us...
Cerberusftp Ftp Server
5
CVSSv2
CVE-2017-6367
In Cerberus FTP Server 8.0.10.1, a crafted HTTP request causes the Windows service to crash. The attack methodology involves a long Host header and an invalid Content-Length header.
Cerberusftp Ftp Server 8.0.10.1
1 EDB exploit
4.3
CVSSv2
CVE-2012-6339
Multiple cross-site scripting (XSS) vulnerabilities in the administrative web interface in Cerberus FTP Server prior to 5.0.6.0 allow (1) remote malicious users to inject arbitrary web script or HTML via a log entry that is not properly handled within the Log Manager component, a...
Cerberusftp Ftp Server
Cerberusftp Ftp Server 5.0.4.3
Cerberusftp Ftp Server 5.0.4.1
Cerberusftp Ftp Server 5.0.4.2
Cerberusftp Ftp Server 5.0.1.2
Cerberusftp Ftp Server 5.0.1.0
Cerberusftp Ftp Server 4.0.3.3
Cerberusftp Ftp Server 4.0.3.1
Cerberusftp Ftp Server 4.0.0.6
Cerberusftp Ftp Server 4.0.0.9
Cerberusftp Ftp Server 4.0.2.2
Cerberusftp Ftp Server 4.0.9.1
Cerberusftp Ftp Server 4.0.7.3
Cerberusftp Ftp Server 4.0.7
Cerberusftp Ftp Server 4.0.11.0
Cerberusftp Ftp Server 4.0.9.8
Cerberusftp Ftp Server 3.1.2
Cerberusftp Ftp Server 3.1.3.1
Cerberusftp Ftp Server 3.0.6
Cerberusftp Ftp Server 3.0.8
Cerberusftp Ftp Server 3.0.7
Cerberusftp Ftp Server 2.02
5
CVSSv2
CVE-2012-5301
The default configuration of Cerberus FTP Server prior to 5.0.4.0 supports the DES cipher for SSH sessions, which makes it easier for remote malicious users to obtain sensitive information by sniffing the network and performing a brute-force attack on the encrypted data.
Cerberusftp Ftp Server 5.0.3.0
Cerberusftp Ftp Server 5.0.2.0
Cerberusftp Ftp Server 5.0.0.5
Cerberusftp Ftp Server 5.0.0.2
Cerberusftp Ftp Server 4.0.3.0
Cerberusftp Ftp Server 4.0.5.5
Cerberusftp Ftp Server 4.0.4.1
Cerberusftp Ftp Server 4.0.0
Cerberusftp Ftp Server 4.0.2
Cerberusftp Ftp Server 4.0.2.2
Cerberusftp Ftp Server 4.0.9.2
Cerberusftp Ftp Server 4.0.9.3
Cerberusftp Ftp Server 4.0.7.3
Cerberusftp Ftp Server 4.0.7.5
Cerberusftp Ftp Server 4.0.10.0
Cerberusftp Ftp Server 3.1.2
Cerberusftp Ftp Server 3.1.3
Cerberusftp Ftp Server 3.1
Cerberusftp Ftp Server 3.0.8
Cerberusftp Ftp Server 2.0
Cerberusftp Ftp Server 2.02
Cerberusftp Ftp Server 2.16
6.8
CVSSv2
CVE-2012-2999
Multiple cross-site request forgery (CSRF) vulnerabilities in the web interface in Cerberus FTP Server prior to 5.0.5.0 allow remote malicious users to hijack the authentication of administrators for requests that (1) add a user account or (2) reconfigure the state of the FTP ser...
Cerberusftp Ftp Server 5.0.1.2
Cerberusftp Ftp Server 5.0.1.1
Cerberusftp Ftp Server 5.0.0.2
Cerberusftp Ftp Server 5.0.0.1
Cerberusftp Ftp Server 1.0
Cerberusftp Ftp Server 1.71
Cerberusftp Ftp Server 2.02
Cerberusftp Ftp Server 5.0.4.1
Cerberusftp Ftp Server 5.0.4.0
Cerberusftp Ftp Server 5.0.3.1
Cerberusftp Ftp Server 5.0.0.6
Cerberusftp Ftp Server 5.0.0.5
Cerberusftp Ftp Server 1.02
Cerberusftp Ftp Server 1.1
Cerberusftp Ftp Server 2.0
Cerberusftp Ftp Server 1.22
Cerberusftp Ftp Server 1.2
Cerberusftp Ftp Server 2.11
Cerberusftp Ftp Server 4.0.1
Cerberusftp Ftp Server 4.0.1.1
Cerberusftp Ftp Server 3.1.3
Cerberusftp Ftp Server 3.1.3.1
4
CVSSv2
CVE-2004-2769
Cerberus FTP Server prior to 4.0.3.0 allows remote authenticated users to list hidden files, even when the "Display hidden files" option is enabled, via the (1) MLSD or (2) MLST commands.
Cerberusftp Ftp Server
Cerberusftp Ftp Server 4.0.1.1
Cerberusftp Ftp Server 3.1.4
Cerberusftp Ftp Server 3.1.3
Cerberusftp Ftp Server 3.0.8
Cerberusftp Ftp Server 3.0.7
Cerberusftp Ftp Server 3.0.2
Cerberusftp Ftp Server 3.0
Cerberusftp Ftp Server 2.44
Cerberusftp Ftp Server 2.42
Cerberusftp Ftp Server 2.31
Cerberusftp Ftp Server 2.23
Cerberusftp Ftp Server 2.2
Cerberusftp Ftp Server 2.16
Cerberusftp Ftp Server 2.02
Cerberusftp Ftp Server 2.01
Cerberusftp Ftp Server 1.7
Cerberusftp Ftp Server 1.5
Cerberusftp Ftp Server 1.03
Cerberusftp Ftp Server 1.01
Cerberusftp Ftp Server 4.0.0.11
Cerberusftp Ftp Server 4.0.0.9
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started