Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ftp server vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2016-9500
Accellion FTP server prior to version FTA_9_12_220 uses the Accusoft Prizm Content flash component, which contains multiple parameters (customTabCategoryName, customButton1Image) that are vulnerable to cross-site scripting.
Accellion Ftp Server
6.8
CVSSv2
CVE-2004-2674
Directory traversal vulnerability in ArGoSoft FTP Server prior to 1.4.1.6 allows remote authenticated users to determine the existence of arbitrary files via ".." sequences in the SITE UNZIP argument.
Argosoft Ftp Server
6.8
CVSSv2
CVE-2004-2675
ArGoSoft FTP Server prior to 1.4.1.6 allows remote authenticated users to cause a denial of service (crash) via a SITE PASS command with a long password parameter, which causes the database to be corrupted.
Argosoft Ftp Server
1 EDB exploit
4.3
CVSSv2
CVE-2020-5195
Reflected XSS through an IMG element in Cerberus FTP Server prior to versions 11.0.1 and 10.0.17 allows a remote malicious user to execute arbitrary JavaScript or HTML via a crafted public folder URL. This occurs because of the folder_up.png IMG element not properly sanitizing us...
Cerberusftp Ftp Server
5.5
CVSSv2
CVE-2020-5196
Cerberus FTP Server Enterprise Edition prior to versions 11.0.3 and 10.0.18 allows an authenticated malicious user to create files, display hidden files, list directories, and list files without the permission to zip and download (or unzip and upload) files. There are multiple wa...
Cerberusftp Ftp Server
5
CVSSv2
CVE-2004-1428
ArGoSoft FTP prior to 1.4.2.1 generates an error message if the user name does not exist instead of prompting for a password, which allows remote malicious users to determine valid usernames.
Argosoft Ftp Server
4.3
CVSSv2
CVE-2007-5930
Cross-site scripting (XSS) vulnerability in the web interface in Cerberus FTP Server prior to 2.46 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Cerberus Ftp Server
5
CVSSv2
CVE-2019-9600
The Olive Tree FTP Server (aka com.theolivetree.ftpserver) application up to and including 1.32 for Android allows remote malicious users to cause a denial of service via a client that makes many connection attempts and drops certain packets.
Theolivetree Ftp Server
5
CVSSv2
CVE-2016-9499
Accellion FTP server prior to version FTA_9_12_220 only returns the username in the server response if the username is invalid. An attacker may use this information to determine valid user accounts and enumerate them.
Accellion Ftp Server
7.5
CVSSv2
CVE-2001-0256
FaSTream FTP++ Server 2.0 allows remote malicious users to cause a denial of service, and possibly execute arbitrary commands, via a long username.
Fastream Ftp\\+\\+ Server 2.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »