Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
southrivertech titan ftp server vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-34005
An issue exists in TitanFTP (aka Titan FTP) NextGen prior to 1.2.1050. There is Remote Code Execution due to a hardcoded password for the sa account on the Microsoft SQL Express 2019 instance installed by default during TitanFTP NextGen installation, aka NX-I674 (sub-issue 1). NO...
Southrivertech Titan Ftp Server Nextgen
8.8
CVSSv3
CVE-2023-27745
An issue in South River Technologies TitanFTP Before v2.0.1.2102 allows attackers with low-level privileges to perform Administrative actions by sending requests to the user server.
Southrivertech Titan Ftp Server Nextgen
8.8
CVSSv3
CVE-2023-22629
An issue exists in TitanFTP up to and including 1.94.1205. The move-file function has a path traversal vulnerability in the newPath parameter. An authenticated attacker can upload any file and then move it anywhere on the server's filesystem.
Southrivertech Titan Ftp Server
7.8
CVSSv3
CVE-2023-27744
An issue exists in South River Technologies TitanFTP NextGen server that allows for a vertical privilege escalation leading to remote code execution.
Southrivertech Titan Ftp Server Nextgen
7.8
CVSSv3
CVE-2022-34006
An issue exists in TitanFTP (aka Titan FTP) NextGen prior to 1.2.1050. When installing, Microsoft SQL Express 2019 installs by default with an SQL instance running as SYSTEM with BUILTIN\Users as sysadmin, thus enabling unprivileged Windows users to execute commands locally as NT...
Southrivertech Titan Ftp Server Nextgen
6.5
CVSSv3
CVE-2019-10009
A Directory Traversal issue exists in the Web GUI in Titan FTP Server 2019 Build 3505. When an authenticated user attempts to preview an uploaded file (through PreviewHandler.ashx) by using a \..\..\ technique, arbitrary files can be loaded in the server response outside the root...
Southrivertech Titan Ftp Server 2019
1 EDB exploit
6.1
CVSSv3
CVE-2022-44215
There is an open redirect vulnerability in Titan FTP server 19.0 and below. Users are redirected to any target URL.
Southrivertech Titan Ftp Server
1 Github repository
4.9
CVSSv3
CVE-2023-45690
Default file permissions on South River Technologies' Titan MFT and Titan SFTP servers on Linux allows a user that's authentication to the OS to read sensitive files on the filesystem
Southrivertech Titan Ftp Server
Southrivertech Titan Mft Server
4.3
CVSSv3
CVE-2023-45688
Lack of sufficient path validation in South River Technologies' Titan MFT and Titan SFTP servers on Linux allows an authenticated malicious user to get the size of an arbitrary file on the filesystem using path traversal in the ftp "SIZE" command
Southrivertech Titan Mft Server
Southrivertech Titan Sftp Server
NA
CVE-2014-1841
Directory traversal vulnerability in the web interface in Titan FTP Server prior to 10.40 build 1829 allows remote malicious users to copy an arbitrary user's home folder via a Move action with a .. (dot dot) in the src parameter.
Southrivertech Titan Ftp Server
Southrivertech Titan Ftp Server 10.30
Southrivertech Titan Ftp Server 10.0.1733
Southrivertech Titan Ftp Server 10.01.1740
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »