Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

xlight ftp server xlight ftp server vulnerabilities and exploits

(subscribe to this query)
5
CVSSv2
CVE-2004-0255
Xlight 1.52, with log to screen enabled, allows remote malicious users to cause a denial of service by requesting a long directory consisting of . (dot) and / (slash) characters, which causes the server to crash when the administrator views the log file, possibly triggering a buf...
Xlight Ftp Server Xlight Ftp Server 1.25Xlight Ftp Server Xlight Ftp Server 1.41Xlight Ftp Server Xlight Ftp Server 1.45Xlight Ftp Server Xlight Ftp Server 1.52
6.8
CVSSv2
CVE-2009-4795
Multiple SQL injection vulnerabilities in Xlight FTP Server prior to 3.2.1, when ODBC authentication is enabled, allow remote malicious users to execute arbitrary SQL commands via the (1) USER (aka username) or (2) PASS (aka password) command.
Xlightftpd Xlight Ftp Server 2.861Xlightftpd Xlight Ftp Server 2.86Xlightftpd Xlight Ftp Server 2.706Xlightftpd Xlight Ftp Server 2.70Xlightftpd Xlight Ftp Server 2.02Xlightftpd Xlight Ftp Server 2.01Xlightftpd Xlight Ftp Server 1.60Xlightftpd Xlight Ftp ServerXlightftpd Xlight Ftp Server 3.0.5Xlightftpd Xlight Ftp Server 3.1.6Xlightftpd Xlight Ftp Server 3.1.5Xlightftpd Xlight Ftp Server 2.85Xlightftpd Xlight Ftp Server 2.835Xlightftpd Xlight Ftp Server 2.60Xlightftpd Xlight Ftp Server 2.40Xlightftpd Xlight Ftp Server 2.0Xlightftpd Xlight Ftp Server 1.65Xlightftpd Xlight Ftp Server 3.0Xlightftpd Xlight Ftp Server 2.8Xlightftpd Xlight Ftp Server 2.72Xlightftpd Xlight Ftp Server 2.1Xlightftpd Xlight Ftp Server 2.03
6.8
CVSSv2
CVE-2008-0604
The LDAP authentication feature in XLight FTP Server prior to 2.83, when used with some unspecified LDAP servers, does not check for blank passwords, which allows remote malicious users to bypass intended access restrictions.
Xlight Ftp Server Xlight Ftp Server
5
CVSSv2
CVE-2004-0287
Xlight FTP server 1.52 allows remote authenticated users to cause a denial of service (crash) via a RETR command with a long argument containing a large number of / (slash) characters, possibly triggering a buffer overflow.
Xlight Ftp Server Xlight Ftp Server 1.52
6.5
CVSSv2
CVE-2010-2695
Directory traversal vulnerability in the SFTP/SSH2 virtual server in Xlight FTP Server 3.5.0, 3.5.5, and possibly other versions prior to 3.6 allows remote authenticated users to read, overwrite, or delete arbitrary files via .. (dot dot) sequences in the (1) ls, (2) rm, (3) rena...
Xlightftpd Xlight Ftp Server 3.5Xlightftpd Xlight Ftp Server 3.5.5
NA
CVE-2024-0737
A vulnerability classified as problematic was found in Xlightftpd Xlight FTP Server 1.1. This vulnerability affects unknown code of the component Login. The manipulation of the argument user leads to denial of service. The attack can be initiated remotely. The exploit has been di...
Xlightftpd Xlight Ftp Server 1.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761command injectionCVE-2024-3676IDORCVE-2024-30039CVE-2024-32113CVE-2024-30049CVE-2024-4776SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook